Support Forum
Is ThunderTix, and my events listing with ThunderTix, SHA2 compliant? - Fri - Sep 23, 2016 - 2:55pm
-
We were recently asked if ThunderTix was SHA2 compliant since Elavon (one of the available payment gateways for credit card processing) has a deadline for all customers to upgrade to a SHA2 encryption very soon. As SHA1 has been deprecated due to its security vulnerabilities, it is important to ensure you are no longer using an SSL certificate which is signed using SHA1. ThunderTix uses a SHA-256 encryption which is superior to the SHA1. If you want to confirm the encryption level of your own ThunderTix website, you are welcome to test your site using the links below:
SSLLabs - SSLLabs is a tool that displays info regarding our SSL certificate used for all event websites. You can use this tool to verify the signature algorithm used, which is located near the top of the report.
https://www.ssllabs.com/ssltest/analyze.html?d=yourthundertixsite.thundertix.com - Change "yourthundertixsite" in the URL to use your own ThunderTix URL (found in your Account Settings under Display Settings)
shaaaaaaaaaaaaa – Alternatively, if you want to simply check your event website only for certificates to ensure we are not using the weak SHA1 signature, you can use this tool.
View our video tutorials
Do I need to complete a questionnaire for PCI compliance?
How do I connect my Authorize.net gateway with ThunderTix?
Where can I get my Verified Gateway Seal for my checkout page?
Declined Card, but Pending Charges on Bank Account
How do I connect my Moneris account with ThunderTix?
What credit card readers will work with ThunderTix?
Authorize.net error - "The merchant login ID or password is invalid or the account is inactive"
