We have been advised by CBA that there will be changes to the security requirements of BPoint. This is to ensure that BPoint is in line with Payment Card Industry Data Security Standards (PCI-DSS).
From 22 April 2018, TLS 1.0 and SSL version 3 will no longer be supported as the encryption method for BPoint. The preference is TLS 1.2. We would like confirmation from Avoka that TLS 1.0 and SSL v3 are not implemented in any of the integrations or payment pages please. Otherwise, please advise of the way forward for this situation.
For your reference: https://blog.pcisecuritystandards.org/are-you-ready-for-30-june-2018-sayin-goodbye-to-ssl-early-tls?et_cid=52693&et_subid=14549169&et_mid=6410316
The Transact Manager servers use Java Development Kit 1.8 which by default supports TLS 1.2. All connections are made using TLS 1.2 provided the server connecting to also supports TLS 1.2.