All Systems Operational

Updated a few seconds ago

Windcave Merchant Services




Operational

Hosted Payments API




Operational

Merchant Hosted API




Operational

Card Present Services




Operational

Batch Processing Services




Operational

IVR Payment Services




Operational

Payline Web Interface and Reporting




Operational

Banks and Acquirers




Operational

Account2Account




Operational

Scheduled Maintenance

Schedule

February 7, 2022 20:00 - 21:00 UTC

Components

Hosted Payments API, Merchant Hosted API

Locations

Americas, Asia-Pacific, EMEA

Description

What is happening? Windcave is planning to deploy an extra security certificate chain which is likely to be used by modern browsers and merchant applications. The new chain will utilize ECDSA for the handshake algorithm, which in-time will replace the current RSA handshake. The RSA certificates and handshake will remain available and will not be decommissioned for some time given we are using strong ciphers. Another notification will be sent in the future if the RSA algorithm was to be discontinued. Does this affect me? If you are a cardholder this won’t have any impact to you, modern browsers are designed to use the highest available handshake algorithm so you would expect (once available) the ECC certificate chain will be used for the highest level of security. If an older browser is being used and the ECDSA handshake is not supported then RSA will be selected. For merchant-side applications that interact with https://sec.windcave.com or https://sec.paymentexpress.com we strongly suggest you validate that the ECDSA handshake is supported, or if not that the application will stepdown and continue to use RSA. It’s important that the application doesn’t abort and throw an error if this handshake algorithm is not supported as this would lead to abandoned transactions. Our UAT environment has already been updated with an ECC certificate. If you require development credentials please email our Support team: support@windcave.com. Please also find the ECC certificate bundle here: https://www.windcave.com/downloads/sec_windcave_com_ECC_bundle.zip. If your application requires CAs to be explicitly trusted please use the bundle to import these. If you are still unsure if this will affect you, please forward this notification to your IT provider. When will this change be happening? The proposed date/times below for implementation are: PST: 07 February 2022 at 12:00 - 13:00 EST: 07 February 2022 at 15:00 - 16:00 GMT: 07 February 2022 at 20:00 - 21:00 AEDT: 08 February 2022 at 07:00 - 08:00 NZDT: 08 February 2022 at 09:00 - 10:00 Region: Global

History

No incidents in the last day