Completing an upgrade to TLS 1.2

Michael Glukhovsky Developer Platform

Update (Jun 13, 2018): All requests made to Stripe servers using older versions of TLS are now blocked.

We’ll be turning off support for all API requests to Stripe from servers using older versions of TLS on June 13, 2018. The TLS protocol is used to encrypt your servers’ communications with Stripe, so it’s important that your integration uses the latest version. (TLS 1.2 is much more secure than its predecessors.)

Since our announcement two years ago, we’ve been working with our users to upgrade almost all Stripe integrations to using TLS 1.2 for API requests.

Here’s the timeline we’ll be following:

  • Monday, February 19: All servers using older versions of TLS will be blocked from the Stripe API in test mode.
  • Wednesday, June 13: All servers using older versions of TLS will be blocked from the Stripe API in live mode.

If you’re not sure you’re running TLS 1.2, you can follow our detailed upgrade instructions to check your version and learn how to secure your servers. While there are usually no changes required to your Stripe code, you might need to upgrade the operating system or packages on your servers.

If you have any questions or need help, just let us know!

Like this post? Join our team.

Stripe builds financial tools and economic infrastructure for the internet.

Have any feedback or questions?

We’d love to hear from you.