AEDT: Wednesday 6th October 2021 01:00 - 6:00
ANZ AU have informed us they will be conducting scheduled maintenance activities.
ANZ AU issued cards may experience transaction declines during the window.
What is happening?
Windcave is planning to deploy an extra security certificate chain which is likely to be used by modern browsers and merchant applications. The new chain will utilize ECDSA for the handshake algorithm, which in-time will replace the current RSA handshake.
The RSA certificates and handshake will remain available and will not be decommissioned for some time given we are using strong ciphers. Another notification will be sent in the future if the RSA algorithm was to be discontinued.
Does this affect me?
If you are a cardholder this won’t have any impact to you, modern browsers are designed to use the highest available handshake algorithm so you would expect (once available) the ECC certificate chain will be used for the highest level of security. If an older browser is being used and the ECDSA handshake is not supported then RSA will be selected.
For merchant-side applications that interact with https://sec.windcave.com or https://sec.paymentexpress.com we strongly suggest you validate that the ECDSA handshake is supported, or if not that the application will stepdown and continue to use RSA. It’s important that the application doesn’t abort and throw an error if this handshake algorithm is not supported as this would lead to abandoned transactions.
Our UAT environment has already been updated with an ECC certificate. If you require development credentials please email our Support team: firstname.lastname@example.org.
Please also find the ECC certificate bundle here: https://www.windcave.com/downloads/sec_windcave_com_ECC_bundle.zip. If your application requires CAs to be explicitly trusted please use the bundle to import these.
If you are still unsure if this will affect you, please forward this notification to your IT provider.
When will this change be happening?
The proposed date/times below for implementation are:
PDT: 04 October 2021 at 13:00 - 14:00
EDT: 04 October 2021 at 16:00 - 17:00
BST: 04 October 2021 at 21:00 - 22:00
AEDT: 05 October 2021 at 07:00 - 08:00
NZDT: 05 October 2021 at 09:00 - 10:00
Windcave Merchant Services, Hosted Payments API, Merchant Hosted API, Card Present Services, Batch Processing Services, IVR Payment Services, Payline Web Interface and Reporting, Banks and Acquirers, Account2Account
Americas, Asia-Pacific, EMEA, New Zealand, Australia
Windcave is conducting network maintenance for a USA based data center.
PST: Monday 08 November 2021, 12:00 - 15:00
EST: Monday 08 November 2021, 15:00 - 18:00
Windcave will be using a new IP address range:
220.127.116.11/27 (18.104.22.168 -> 22.214.171.124)
All customers who whitelist incoming/outgoing IP addresses must ensure that the full Windcave IP address range is allowed.
Our full IP address range is detailed here under “IP Ranges”:
Otherwise you may lose connectivity to Windcave services during this window if the IP addresses we use are not allowed on your network.
[Monitoring] PDT: 18:01 - 18:08
EDT: 21:01 - 21:08
Merchants transacting via Chase USA would have experienced transaction failures during the above times.
Transaction processing has returned to normal and is currently stable.
Windcave will continue to monitor.
September 17, 2021 03:15 UTC
[Monitoring] PDT: 19:50 - 19:53
EDT: 22:50 - 22:53
We have observed an additional minor interruption to transaction processing at the above time.
Chase USA have confirmed that the issue has been resolved and they are continuing to monitor transaction processing.
Windcave will continue to monitor.
September 17, 2021 22:32 UTC
[Resolved] Status: Resolved
Windcave has been actively monitoring, no further processing issues have arisen.