PCI DSS 4.0 Rollout and TLS Version Requirements
- John West
At A Glance
PCI DSS 4.0 is coming into effect soon, and all vendor partners will be required to use TLS 1.3 or higher.
Highlights
In order to ensure compliance with the PCI standards and safeguard guest data, we will be requiring TLS 1.3 or higher beginning on March 1st, 2024.
Risks
Non-compliant vendor partners risk disruption of connection if compliance is not met within the given timelines.
Full Notice
PCI DSS 4.0 comes into effect on March 31st, 2024. According to this new standard, all communications are required to use TLS 1.3 or higher. In preparation for this data security standard coming into full force, SHR Group is ending our support for older TLS versions.
On February 1st, 2024, we will be ending support for TLS 1.1.
On March 1st, 2024, we will be ending support for TLS 1.2.
Therefore, all clients and partners must transition to TLS 1.3 or higher before March 1st, 2024.
If you are not already compliant with the standard, we ask that you contact us at integ@shrgroup.com with your timeline for compliance so that we can work together to ensure a smooth transition between TLS versions with no disruption of service.