With so much news and industry coverage concerning information security challenges, the topic is never far from people’s minds. This is especially true when sensitive financial information is being exchanged between systems. Maintaining the latest version of security tools in conjunction with these actions is essential not only for your customers’ peace of mind but your company’s ability to maintain their confidence. TLS is one of the defining security protocols that make secure data transfer, and by proxy internet commerce, possible. Here’s a bit more background on the subject and why you should be considering making the latest upgrades to your system to comply.

Transport Layer Security (TLS)

Transport Layer Security and HTTPS both work in tandem to encrypt the data being sent back and forth between customers and payment service providers such as credit card companies and digital wallets like PayPal.

Experiencing issues with payment processing? Upgrade your POS/PMS solution today and ensure you meet today’s Payment Card Industry Data Security Standards (PCI DSS) using TLS, and can process credit card payments without interruption. Not sure how to go about it? Contact Encompass Solutions experts to get your system up-to-date.

Using PayPal as an example, the payment service provider made a service-wide upgrade to TLS 1.2 just last month. The upgrade made it mandatory for businesses using the service to maintain the same version to enact payment transactions through their business. This means support for TLS 1.0 and 1.1 has been discontinued and businesses maintaining those versions will find their ability to use PayPal for payments and order processing no longer in effect.

On the client side, all it takes is a properly updated browser to ensure the latest TLS protocols are in place. Here is a breakdown of which browsers and their versions are following the latest TLS protocols:

Utilizing Epicor ERP Software

On the provider-side things get trickier. Encompass works with many manufacturers utilizing Epicor ERP software, so we’ll use this as an example. However, any similar software or ERP platforms your business operates on will likely utilize the same protocols to protect electronic data exchanges. Therefore, the practical application remains the same. Businesses operating on legacy versions of the Epicor ERP platform, primarily those on 8.3 and prior, are most significantly impacted. With many of these businesses so far behind on technology, they’re quickly realizing the true cost of waiting until the problem is upon them, rather than staying ahead of the curve with regular updates. That’s why it’s so important to maintain a recent version of Epicor, and any other ERP product, for that very reason.

You may think that a current SSL certificate is enough, but this only addresses security when it comes to incoming web traffic to your server. You need an up-to-date protocol in place that addresses the connections your server is making to other services, such as credit cards and other payment service providers.

Get Up To Speed And Avoid Downtime

To begin, take a good look at your Epicor ERP system. Is it version 10? X or above? That’s a tremendous step when it comes to ensuring you’re following modern security standards. Maintaining the most up-to-date version of Epicor will ensure your operations are never compromised by changing industry standards. You’ll always be caught up with industry standards as long as you’ve got your business running on the latest version of Epicor.

If that’s not the case and you’re on an older version of Epicor, you may find your business quickly being outpaced by industry in line with every effort to maintain the most modern standards of technology and security. Because industry and commerce are constantly at odds with malicious activity in a digital landscape, it’s important to maintain a framework that addresses those potential risks and places adequate security to obstruct their path.

About Encompass Solutions

Encompass Solutions, Inc. is an ERP consulting firm and Epicor Platinum Partner that offers professional services in business consulting, project management, and software implementation. Whether undertaking full-scale implementation, integration, and renovation of existing systems or addressing emerging challenges in corporate and operational growth, Encompass provides a specialized approach to every client’s needs. As experts in identifying customer requirements and addressing them with the right solutions, we ensure our clients are equipped to match the pace of the Industry.

Are you saving on credit card transactions? If you are, great! Read on, because PayPal Credit Card Transactions are receiving upgraded protocols to secure all external connections made to their systems. As a result, you may need to update your system, too.

And if you’re not saving on credit card transactions, why not? First, read our blog post on how we are able to help you do this. Second, come on back here and learn about this important update.

PayPal Credit Card Transactions Update Details

As we said before: as of June 30, 2017, PayPal is upgrading the protocols used to secure all external connections made to their systems. Transport Layer Security version 1.2 (TLS 1.2) and Hypertext Transfer Protocol version 1.1 (HTTP/1.1) will become mandatory for communication with PayPal. Given these changes, it is necessary to apply a patch to the Authorization Service Lite (ASL) component used by the PayPal integration with Vantage/Epicor ERP.

an image informing retailers that PayPal Credit Card Transactions are receiving a security update

More information about the reason for the upgrade can be found on the PayPal site.

How do I know if I have the problem?

All companies using Credit Card Processing in Vantage, Vista, Epicor ERP v9, or Epicor ERP v10 will be affected by these changes and need to install the update.

Customers using Epicor ERP version 10.1.600 will not be required to make these changes as they are already supported.

How do I obtain the updates? 

There are two elements that need to be updated and are detailed in these instructions. Both the update to the operating system environment (1) and the Epicor program .dll file (2) need to be made to ensure compliance with the changes.

(1) The operating system patch is available for download from Microsoft support:

Windows 7 & Windows Server 2008 R2

Windows 8 & Windows Server 2012

Windows 8.1 & Windows Server 2012 R2

Windows 10 & Windows Server 2016

(2) The Epicor program “.dll” files are located on EPICweb under product downloads:

Vantage 8.03.400

Vista 8.03.400

EPR 9.05.700

EPR 9.05.600

EPR 9.04.500

EPR 10.0

EPR 10.1

ERP 10.1.500

Important Note: There is no HotFix for Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008 (not R2) since Microsoft doesn’t provide support for TLS 1.2 on these Operating Systems. This means ASL will no longer work on those versions of Windows and the installation needs to be moved to a different machine with a compatible Operating System.

Of course, if you have any questions about making the changes necessary in the wake of this PayPal Credit Card Transactions update, you can contact us and we’ll be glad to help. Saving the day, saving you money: That’s the Encompass way.

About Encompass Solutions

Encompass Solutions is a business and software consulting firm that specializes in ERP systems, EDI, and Managed Services support for Manufacturers and Distributors. Serving small and medium-sized businesses since 2001, Encompass modernizes operations and automates processes for hundreds of customers across the globe. Whether undertaking full-scale implementation, integration, and renovation of existing systems, Encompass provides a specialized approach to every client’s needs. By identifying customer requirements and addressing them with the right solutions, we ensure our clients are equipped to match the pace of Industry.