@soup_menu TLSv1 has been insecure for quite a while at this point and should be considered EoL, you can read more on that here: https://www.pcisecuritystandards.org/documents/Migrating_from_SSL_Early_TLS_Information%20Supplement_v1.pdf, even 1.1 shouldn't be used any longer. Android 4.0 was released in 2011, if someone is still using such an old release then that is their fault and they should upgrade, it's not your job to support insecure SSL protocols. In fact it should be your job to REFUSE support of those releases to protect users. @jslack honestly I'm surprised the payment processor is even using 1.1, they should really be refusing to use anything less than 1.2.
Log in to comment