BigCommerce Security Update

Security Update (posted by bigcommerce November 14, 2017)

At BigCommerce, shopper trust is one of our highest priorities. In order to fully comply with the evolving PCI DSS (Payment Card Industry Data Security Standards), BigCommerce will disable support for the TLS 1.0 (Transport Layer Security 1.0) encryption standard effective February 1, 2018.

This change will further enhance the security of BigCommerce stores. The industry as a whole will enact the same change by June 2018, in accordance with PCI DSS requirements. This blog post by the PCI Security Standards Council contains additional information about the change.

With this change, we will require TLS 1.2 compliance. If your store uses any legacy BigCommerce API clients, or custom clients, that are currently unable to use TLS 1.2, please take a look at our compliant client SDKs.

We expect a very small number of API clients that to fall under this category. If your application is affected, please update it using one of the modern clients by February 1, 2018, to prevent an interruption of service.

Leave a Reply

Your email address will not be published. Required fields are marked *