Our Sage 100 credit card processing integrations team works diligently to help keep our merchants’ data safe. For Sage 100 merchant processors, this means we need to ensure all our customers are following the PCI-DSS Regulations. On June 30th 2018, TLS 1.0, SSL V3 will no longer be a PCI approved method of running transactions. To maintain PCI Compliance, payment processors and gateway providers are removing security certificates, which will disable older versions of Sage 100 legacy software using this legacy encryption method. This means processing this way will not be considered PCI Compliant, and all transactions will stop working eventually.
PCI compliance security standards are technical and operational requirements set by the PCI Security Standards Council (PCI SSC) to protect cardholder data. The standards apply to all entities that store, process or transmit cardholder data – with guidance for software developers and manufacturers of applications and devices used in those transactions. The Council is responsible for managing the security standards, while compliance with the PCI set of standards is enforced by the founding members of the Council, American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc.
This means that if you are using anything outside of an EMV-enabled credit card terminal, you need to ensure your work station, internet connection, and server are up-to-date with the PCI security standards.
APS Payments (APS) Sage 100 integrations are ready to handle the new PCI compliance security standard, TLS 1.2. Learn more in another related article - TLS 1.2. PCI Compliance in 2018!
TLS 1.2 enforces a methodology that utilizes strong encryption to keep data safe. Our Sage 100 integration takes advantage of your operating systems’ highest available encryption method. If someone is running, say, MAS 90 4.4, and running Microsoft Server 2003, they will not have the ability to run the higher encryption methods of TLS 1.2. Both the client and the server must have operating systems that can process TLS 1.2 methodology.
Several of these new methodologies APS is rolling out are in conjunction with the standards of cryptography and virtual currencies (cryptocurrencies) utilized, to ensure all data is being transmitted with the highest levels of security.
What does this mean for you?
If you are still running an old server (i.e. Microsoft Windows Server 2003) or are running older versions of Windows (i.e. Windows XP) on your work stations, please contact APS to ensure you are prepared for the upcoming changes and your integration adheres to Sage 100 TLS 1.2. PCI Compliance standards.
Our team works hard to better prepare our clients and future clients in data security, fully integrated solutions, and lower merchant fees. If you have not made the switch to APS yet, contact us to see how we can help!