As we have had some questions come in regarding this change, we wanted to issue a brief explanation of how this might affect our customers. For a little background, PayPal is changing their standards on what SSL certs they will accept connections from. PayPal states: “It is important to note that these changes are to address industry-wide security issues and are not unique to PayPal. When implemented, they will improve the privacy and reliability of your PayPal integrations.”
BCS Engineering is in full support of these changes. The recent upgrades to SSL on our hosted environments should address any concerns for customers who host with us. Any hosted sites should also be using the correct certs at this point.
For customers who host elsewhere and purchase SSL certificates through us, we have been changing customers away from the problematic 1024-bit certificates to the more secure 2048-bit certificates as renewals come up. If however, you have purchased a longer term 1024-bit certificate that has not expired before these changes were standard, we can re-issue an appropriate cert for an installation fee. Also, if your site is hosted elsewhere, it is possible your host may need to update your server to ensure compliance with these changes.
To read the full statement from PayPal, click here.