...
We plan to disable CBC ciphers and enable TLSv1.3 encryption according to the following schedule:
Services | CBC disablement and TLSv1.3 enablement schedule |
|---|---|
Test environments (all)
| Was implemented 20th May, 2024 |
Production environments (web browser access)
| September 3, 2024 |
Production environments (API integration):
| September 10, 2024 |
Production environments (Token Requests):
| September 17, 2024 |
Production environments (file transfer):
| September 24, 2024 |
Note, dates are subject to change.
Common IssuesÂ
If the change preparation has not been successfully applied, an SFTP connection to the WIBS SFTP server will not be successful without manual administrative user intervention.
This may appear as any of the following errors depending on your SFTP client software/application
...
Frequently Asked Questions
How do I evaluate whether my
...
HTTPS connectivity contains cryptography which is compatible with the changes Westpac is making?
Westpac advises customers to perform a full UAT test against our Test/Support environment to confirm this change will not cause any issues for your integrations.
What if my
...
HTTPS implementation breaks?
Customers will be required to use iLink as a BCP option for the delivery of their files between your financial systems and Westpac
This will be communicated by our helpdesk to customers who are having issues with their connectivity. Our helpdesk will be on hand to assist customers who have issues instigating iLink BCP as a priority.
Westpac will be unable to roll this change back
...
No, the above-mentioned cryptographic functions will be disabled. There will be no way to reinstate these functions.
My
...
implementation solution does not involve credit card data and therefore is not subject to PCI-DSS. Does this change still apply to me?
Yes, this change will apply to all HTTP customers that connect to the Westpac (Qvalent) web services.
...