As part of our process of continually improving security and working to ensure that the processes and technology guarding your data are up to date, Tradeshift is planning to attain PCI Level 1 accreditation this year. One of the necessary changes to provide this increased level of protection involves discontinuing the use of TLS 1.0 for HTTPS connections to the web portal at go.tradeshift.com as it is susceptible to attacks that can compromise the confidentiality of your connections, putting your data at risk of disclosure while in transit.

What this means to you?

  1. Companies using Tradeshift via web browsers
    As of 2013, all major browsers now support TLS 1.1. Users running browser versions previous to this (generally Internet Explorer versions 10 or earlier) which do not support TLS 1.1 or 1.2 by default will need to upgrade or manually enable TLS 1.1 using the steps below to access the web portal after this change. You can validate support in your browser by checking on the SSL Labs client tester here. If your browser does not support TLS 1.1 or 1.2, you will be affected by this change. Please coordinate with your IT team to ensure that you will have an alternative up-to-date browser you will be able to use after the changeover date. We’ve also included instructions for enabling TLS 1.1 on IE 8,9 and 10 below.

  2. Companies using Tradeshift with API integrations
    Companies with API integrations need to make sure that any connections with Tradeshift support either TLS 1.1 or 1.2. This may involve your engineering team who will need to evaluate the systems used to connect with Tradeshift to ensure that they properly support TLS 1.1 or 1.2. Please ensure they are informed, able to validate settings and if necessary, make the requisite changes.

Instructions for enabling TLS 1.1 on earlier versions of Internet Explorer (8,9 and 10 only):
  1. Go to Tools and select Internet Options
  2. Select the Advanced tab in Internet Options
  3. Enable(check) TLS 1.1, TLS 1.2 and also disable (uncheck) SSL 3.0 for additional security
  4. Click on Apply and OK to complete the procedure
TLS 1.1 enablement instructions