Updated: PCI Compliance & TLS 1.0 Retirement

In 2015, the PCI Council mandated support for TLS 1.0 encryption be discontinued to help keep credit card data secure during information transfer at checkout.  

In support of this mandate, Moneris has advised merchants to update their preferred browsers to the latest version. Please see some of the recommended browsers below:

  • Internet Explorer 11
  • Google Chrome 30 or higher
  • Mozilla Firefox 27 or higher
  • Safari 8 or higher

Effective March 29, 2018 Moneris US test environment (esplusqa.moneris.com) was updated to remove TLS 1.0.  Vantiv will retirement TLS 1.0 on June 27th, 2018. 

For Moneris Integrators, please see below for a few tips on how to enable TLS 1.2:


  • The easiest thing would be to upgrade the .NET framework to 4.6.1 as that uses TLS 1.2 by default. This can be done through the web.config:
<httpRuntime targetFramework="4.6.1"/>
  • Alternatively, before forming the http request, add security protocol type as follows:
ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls12;
  • Using .NET 4.5+, one can also edit the registry based on suggested action in Microsoft’s article below:
  • Add SSL Certificates on the computers that need to connect to Moneris (Desktop and Servers).
  • For card-present, no new dll is required, but the program needs to be recompiled in .NET 4.5+.

If you are using .NET/COM interoperability add the following step

  • Generate new TLB using .NET 4.5 or 4.6 on the machine and re-register the TLB


  • Upgrade to Java 8 as this version uses 1.2 by default.
  • If this is not an option, update to Java 6 – 121 (minimum).
Please Note The new jdk.tls.client.protocols System Property may be used to control the protocols for TLS connection.
One may launch their application with this property (e.g. java -Djdk.tls.client.protocols="TLSv1.2" will enable only TLSv1.2 on client SSLSockets).