BridgePay Partner Notice: SSLv3 security vulnerability

BridgePay Partner Notice:

As you may be aware, the Secure Sockets Layer (SSL) protocol is one of the most highly used technologies to encrypt internet communications. A vulnerability in version 3 (SSLv3) has been recently discovered by Google researchers which could allow the traffic to be decrypted in certain situations. BridgePay is dedicated to maintaining a high level of security and protecting it’s communications with our partners. To prevent our systems from being exposed to this threat, BridgePay will cease support for the SSLv3 protocol on Monday, November 3rd at 4:30 am EDT. If you are currently using SSLv3, you will not be able to process transactions via BridgePay as we will no longer accept this protocol.

To assist you with this change, please review the Q&A provided below.

What systems are affected?

Any system that makes an encrypted connection to BridgePay. This includes Web Browsers and Terminals.

How do I know if I am using SSLv3? Is there a way for me to check my SSL protocol?

Please consult your terminal’s documentation to ensure it support the TLS protocol or reach out to the contact who provided your credit card terminal. Most modern browsers support TLS. Consult your IT department to ensure your browser supports TLS 1.0 or higher.

What should I use instead of SSLv3?

It is recommended you use TLS 1.0 or higher when making encrypted connections to BridgePay systems.

Who should I contact if I am using SSLv3 and need to be upgraded to TLS 1.0 or higher?

If your terminal does not support the TLS protocol, contact your terminal provider for an upgrade.


Have more questions? Submit a request


Please sign in to leave a comment.
Powered by Zendesk