Hub · Blog

Niklas Dahlbeck


26

Sep

TLS & Security update & Deadline

Security is at the heart of what we do at Judopay and as a result we ensure we’re always staying on top of the latest industry-wide security updates & changes, like PCI.

What is happening?

As you may be aware by now the PCI Security Council released the PCI-DSS 3.1. The main change related to the deprecating of TLS 1.0 & SSL 3.0 as recognised secure protocols. As stated in our previous emails this means that there are a few mandatory updates you need to be aware of.

From October 20th any connection (App/Web/API) to Judopay that is not using the following will not be able to process live transactions.

What do I need to do?

TLS 1.1+
Please ensure that you are using TLS 1.1 onward as a cryptographic protocol to effectively communicate with Judopay’s systems with both sandbox and live environments.

SHA-256
Please ensure that you have implemented the SHA-256 certificate to ensure the communication between both sides are well protected against cryptographic attacks.

Web payments & Web payments API
If you’re using our Web payments solution or have integrated using our Web payments API make sure you’re using the latest major version of our API (5.0+) and your are pointing to the correct endpoint (https://gw1.judopay.com/). Both settings are listed in the transaction header declaration before the payment request.

SDKs
If you’re using any of our SDKs please ensure that you are using:
• iOS SDK (Kit ObjC and Kit Swift) version 6.0 or newer
• Android version 5 onward
• Xamarin version 2.3.0 or later
• .NET SDK 1.1.113 or newer

These SDKs can be found on Github.

If you would like to test these changes our sandbox environment is currently updated with the above changes.

If you require any support with this migration please contact developersupport@judopayments.com.


13

Jun

State of the in-app payment experience

 

‘Aaarghh – why are they asking me for all this, all I want is to pay!’

I am often heard growling something along those lines (swearing omitted), when I try to complete a payment from my phone.

As the UX lead at Judopay, when faced with poor checkout experiences – that, I some years ago might have accepted as the painful way of things – now invoke similar reactions in me as when my older relatives are having ‘computer problems’, blood pressure included. read more


Contact us, we'd love to hear from you

* Required. We will get back to you soon and we never share your details.