As you know, the Payment Card Industry Security Standards Council is driving a change to improve Web browser security used by companies that accept credit cards online. This focuses on use of the TLS 1.2 protocol, which replaces TLS 1.1. The PCI-mandated effective date for TLS 1.2 is March 31, 2022.
As a result, and to comply with this change, InSource will disable the TLS 1.1 protocol from InSourceonline.com and all customers will be required to use browsers with TLS 1.2 when accessing the InSource website. This change will also be implemented for cXML and EDI data exchange using HTTPs and AS2.
InSource is achieving compliance sooner than the PCI deadline, and we ask that all customers make their best efforts to be compliant by January 31, 2022. This date will allow ample opportunity to address any issues that you may have with the new protocol in advance of the mandatory date, to help enable a smooth changeover.
We encourage you to speak with your Help Desk or IT consultant, or to check with your software provider, at your earliest opportunity to make certain that TLS 1.2 is supported and enabled on your operating system. Please note:
If you are unable to test with the link provided, or if your test is unsuccessful, please contact your company's Help Desk, IT consultant or software provider well prior to January 31, 2022 to ensure that your browser and operating system are enabled for TLS 1.2.
For questions, please e-mail PCITLS@insourceonline.com or call 1-800-901-1803, Monday through Friday between 9:00am and 6:00pm (ET).