Kryptronic Software Support Forum

PayPal has issued the following:

#################################################

At PayPal, security and safety are our top priorities and, as a result, we’re implementing a series of security upgrades throughout 2016 and 2017. To comply with industry standards, we need to move our endpoints to stronger encryption known as SHA-256 by 30 September 2016.

In preparation for our transition to SHA-256, we'll be undertaking critical testing between 17 June and 29 September 2016. During this period, if your systems aren’t SHA-256 compatible, your business’ ability to accept payments with PayPal may be temporarily impacted. *We strongly recommend that your systems are compatible with SHA-256 by 17 June* to ensure that your business isn’t interrupted. *If your systems aren’t SHA-256 compatible by the full cutover on 30 September, your business will be unable to accept payments with PayPal* until changes are made. For more details about our transition to SHA-256, please go to 2016-2017 Merchant Security Roadmap Microsite.

At PayPal, we’re committed to delivering the highest level of security available for our customers. Compatibility with SHA-256 will help strengthen your protection and ensure that your business systems are up to date with the latest security measures. Thank you for your continued support and for helping us maintain these standards for all our customers.

#################################################

Kryptronic software is set up to handle this change, no updates required.  Kryptronic Managed Hosting is set up to handle this change. 

Self-Hosted clients should check with their hosting provider.  Kryptronic software itself will support this change, but the hosting environment will need to be checked (particularly the openssl version installed, and whether it's SHA-256 compatible).