tls-ssl
As you may know, several of our partners, including Authorize.net and Shippo, have recently communicated updates regarding their API and security protocols. A key part of these updates is the deprecation of older TLS versions (1.1 and earlier) in favor of TLS 1.2 or higher.

For our hosted clients utilizing M.O.M. and SiteLINK services, we want to reassure you that we have already implemented the necessary changes to comply with these standards. We have removed any traces of TLS 1.1 or older versions from our environment to ensure full compliance. As related to the recent Authorize.net SSL and TLS notices, we will be testing as directed by the Authorize.net’s published KB article once the SSL change has been completed on their end by 10/24.

However, for clients with an on-premise solution of M.O.M. or if it is hosted outside of Freestyle’s hosting solution, it is critical to review your current infrastructure. Please work with your network or IT administrator to confirm that your systems are up to date with the latest security protocols. This includes updating your server’s SSL/TLS configuration to support the most current security standards, such as TLS 1.2 or higher, to prevent any potential service disruptions.

As related to the recent Authorize.net SSL and TLS changes, details for these updates and testing can be found in the following KB articles.  Please contact Authorize.net support for questions regarding your on-premise or hosted installation that is outside of Freestyle’s environment.

Authorize.net TLS and Cipher Support

https://support.authorize.net/knowledgebase/Knowledgearticle/?code=000001526

Entrust to DigiCert SSL Certificate Migration

https://support.authorize.net/knowledgebase/Knowledgearticle/?code=KA-05545
https://support.authorize.net/knowledgebase/Knowledgearticle/?code=000003009

While we’ve taken all necessary steps within our hosted environment, it’s important to note that this update is outside our control for on-premise solutions. Therefore, we strongly recommend prioritizing these updates to protect your business.

As a general best practice, we encourage you to:

  • Regularly audit your systems for outdated security protocols.
  • Keep your software and infrastructure updated to prevent potential vulnerabilities.
  • Collaborate closely with your IT team to ensure compliance with industry standards.
  • Contact Authorize.net support for assistance.

We would also like to share some points in response to questions we’ve been frequently asked about these changes:

  • Our software uses the API based implementation
  • The Authorize.net endpoint used in the software is api.authorize.net
  • Neither M.O.M. nor SiteLINK require software updates for the TLS and SSL changes
We look forward to a successful transition for all our clients.