PayPal integration

I have some websites that use the PayPal integration Webassist code. I got this letter that says "The Payment Card Industry Security Standards Council (PCI) has issued new security standards that must be implemented by June 30, 2018. By this date, all entities must stop using Secure Sockets Layer (SSL)/early Transport Layer Security (TLS) as a security control in their systems and completely transition to a secure version of TLS encryption protocols, such as TLS 1.2. You can read more about the security standards on the PCI website pcisecuritystandards.org."

Do you have new code for this? It says that their records indicate our Paypal Integration uses an older encryption protocol and has to be changed immediately to TLS 1.2 cryptographic protocol by June 30. Let me know. Thank you.

Create a blank page on your web site with this code:

<?php

$ch = curl_init('https://tlstest.paypal.com/');

curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);

curl_setopt($ch, CURLOPT_USERAGENT, $_SERVER['HTTP_USER_AGENT']);

curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);

curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);

$data = curl_exec($ch);

curl_close($ch);

die($data);

?>

That should give you a message telling you what needs to be updated. Then send that to your hosting provider and have them correct the issue.

great. It came back with 'PayPal_Connection_OK'. The hosting confirmed they support TLS 1.2 and HTTP/1.1 connections. So I assume come June 30, it should continue to work without issue. Thank you.

I believe that is the case. I'm not sure why that letter seems to be going out to some people when they are already configured properly, but it appears that it won't be a problem for you.