Nochex Security Upgrade – TLS 1.2

Nochex is upgrading the protocols used to secure all external connections made to our systems.
Transport Layer Security version 1.2 (TLS 1.2) will become mandatory for communication with Nochex.

You will need to verify that your system supports TLS 1.2, and make the appropriate updates if necessary by March 1st 2018.

The information that is provided is of a technical nature

We recommend it to be reviewed by one of the following:

  • Your web hosting company
  • Your e-commerce software provider
  • Your in-house web programmer / systems administrator

Tell me more…

Merchants and partners use HTTPS to securely connect with Nochex servers. We use the Transport Layer Security (TLS) protocol to encrypt these communications. To ensure the security of our systems and adhere to industry best practices, Nochex is updating its services to require TLS 1.2 for all HTTPS connections.

To Avoid disruption of service, you must verify that your systems are ready for this change by March 1st 2018.

We recommend that you prioritize the changes and update protocols specified so you are best positioned to protect your customers from security and fraud-related issues.

What do I need to do?

Are you hosted?

A web host, or web hosting service provider is a business that provides the technologies and services
needed for your website or webpage to be viewed on the Internet.

Yes
Contact your hosting provider to ensure they support TLS 1.2

No
Continue to next question

Does your system support TLS 1.2?

Technical Information

The Nochex Test page has been configured with the latest security protocols.

https://tlstest.nochex.com

Verify your systems now!

Step 1 – Choose and Download one of our test pages below

VB.NET

C#

PHP

PHP Curl

Step 2 – Extract and Open the compressed folder to show your tlstest page

Step 3 – Upload the test page to your website using a File Manager or FTP

Step 4 – Go to the url of your TLS Test Page and see if you received one of the following messages

On failure
An error message will be displayed on the page depending on how your system does not support.
Upgrade your system for TLS 1.2

On success
Congratulations your server already supports TLS 1.2.
You will not be required to make any changes to your configuration.

No
Upgrade your system for TLS 1.2 support

Yes
Awesome! No action is required.

Have you hard-coded an earlier version of TLS in your APC or Callback page?

Technical Information

To check if you have hardcoded an earlier version of TLS in your APC or Callback follow the below instructions.

Step 1 – Open your Nochex APC or Callback page

Step 2 – Find one of the following lines

VB.net – Net.ServicePointManager.SecurityProtocol = 768

C# – ServicePointManager.SecurityProtocol = (SecurityProtocolType)768;

PHP Curl – curl_setopt ($ch, CURLOPT_SSLVERSION, 4);

If you have found one of the above lines in your APC or Callback page
go to step 3 otherwise No action is required.

Step 3 – Update the hardcoded values above to the following;

VB.net – Net.ServicePointManager.SecurityProtocol = 3072

C# – ServicePointManager.SecurityProtocol = (SecurityProtocolType)3072;

PHP Curl – curl_setopt ($ch, CURLOPT_SSLVERSION, 6);

Step 4 – Save all changes and Test your APC or Callback pages to make sure everything is still working

Yes
Update your code to always use the latest version of TLS

No
Awesome! No action is required.

Require assistance?

Contact Technical Support by one of the following methods:

  • Raise a Support Ticket with the subject – (TLS 1.2 – Upgrade Assistance / Verification help)
  • Send an Email with the subject – (TLS 1.2 – Upgrade Assistance / Verification help)