Organisations who need to be compliant with Payment Card Industry Data Security Standards (PCI DSS) version 3.1 are now getting a pardon on a key compliance measure. Originally it was detailed that organisations would need to migrate to Transport Layer Security (TLS) version 1.1 or higher by June 2016. The PCI Security Standards Council (PCI SSC) is extending the migration completion date to 30 June 2018 for transitioning from SSL and TLS v1.0 to a secure version of TLS (currently v1.1 or higher) - Read more on the PCI SSC blog

The PCI DSS 3.1 standard was introduced in April 2015 and focuses on moving away from older versions of TLS and Secure Socket Layer (SSL) in an attempt to reduce the risk of exposure from insecure data transfer protocols. One of the key requirements in PCI DSS 3.1 is for organisations to disable the use of SSL versions 3. SSL has been determined to be cryptographically insecure by a large volume of research.