Home >> Linux >> Deadline for Better Encryption on Payment Systems Pushed Back Two Years

Deadline for Better Encryption on Payment Systems Pushed Back Two Years

An anonymous reader writes: The Payment Card Industry Security Standards Council (PCI SSC) has announced that it will push back the mandatory implementation of TLS 1.1+ encryption, over the very insecure SSL 3.0 and TLS 1.0 protocols, subject to POODLE attacks. PCI SSC cites “complications” that may come from dealing with EMV chip&PIN cards in the US, the new mobile payment platforms, and browser upgrades for the insecure SHA-1 algorithm.


Share on Google+

Read more of this story at Slashdot.

Leave a Reply

Your email address will not be published. Required fields are marked *

*

*