Booker Deprecation of TLS 1.0 and 1.1
First, the Technical Stuff.
The Payment Card Industry (PCI) Data Security Standard has stipulated that the TLS 1.0 and 1.1 encryption protocol can no longer be used for secure communications. Any web servers which still support TLS 1.1 or below will fail the PCI standards and therefore will not be allowed to take credit card payments online. The PCI DSS standards can be read in full here: https://www.pcisecuritystandards.org/document_library?category=pcidss&document=pci_dss
- To ensure compliance with the PCI DSS standards, Booker will disable support for TLS 1.0 and 1.1 on our web-facing systems on March 31, 2018
- After March 31, 2018, Booker Merchants who attempt to login to Booker with a browser which does not use TLS 1.2 will be instructed update their browser
What does this mean?
- TLS stands for “Transport Layer Security”. It is the way Internet Browsers connect and communicate securely with Booker.
- TLS 1.0 and 1.1 have security vulnerabilities that may allow bad guys to ‘see’ what is happening between your Browser and Booker. So passwords and credit card data may be able to be ‘seen’ by various hacks such as ‘man in the middle’ attacks. (Don’t worry, we have no reason to believe that this has happened to any Booker merchants or their customers)
- Over 99% of Booker merchants and their customers are already using browsers that have been updated to use the TLS 1.2 security method. However, after March 31, 2018, anyone that is using a browser that is still using TLS 1.0 or 1.1 will not be able to login to Booker or use online Booking. Instead, they will be instructed update their browser.
- If you landed on this page because of the alert you saw when you went to login to Booker, you will want to update your browser, pronto. We get it, you like things that are retro, but trust us on this one, newer is better when it comes to Transport Layer Security.
How do I update my Browser?
- Booker’s recommended Browsers are Firefox and Chrome.
- For Firefox, please go here: https://www.mozilla.org/en-US/firefox/new/
- For Chrome, please go here: https://www.google.com/chrome/browser/desktop/index.html
- Download the latest and greatest from either Chrome or Firefox and install on your computer
Alternatively, if you already have Chrome or Firefox, you can use these methods to update your Browser:
- For Chrome, Please go here: https://support.google.com/chrome/answer/95414?co=GENIE.Platform%3DDesktop&hl=en
- For Firefox, please go here: https://support.mozilla.org/en-US/kb/update-firefox-latest-version
- Booker runs best in Firefox and Chrome, we built it for Firefox and Chrome, so please use Firefox or Chrome. You’ll be happier if you do.
How can I check to see if my browser is updated?
- After you’ve updated Chrome or Firefox (did we mention Booker works best when you use Chrome or Firefox?) go here with your newly updated browser: https://www.ssllabs.com/ssltest/viewMyClient.html
- If under ‘Protocol Support’ you see “Your user agent has good protocol support. Your user agent supports TLS 1.2, which is recommended protocol version at the moment.” You are using a Browser that is using TLS 1.2 or greater and you are good to go!
- If you don’t see that, please go and update your Chrome and/or Firefox Browser.
- If you do need help updating your Browser, or you’ve already updated your Browser and are still getting TLS warnings, Booker Support may be able to help. Give us a call at 866-966-9885.
You’ll definitely want to save our Support number (866-966-9885), because if you are still getting a TLS warning, you won’t be able to go to https://help.booker.com because we updated that part of Booker a few months ago. We are actually impressed you’ve been able to make it for as long as you have!