On This Page

Release Notes

These release notes cover all releases to the production server for the week ending
February 27, 2026
.

Announcements

These announcements are for
February 27, 2026
.

TLS Updates

We are making changes to our implementation of Transport Layet Security (TLS).

TLS 1.3

To maintain the highest security standards for both browser-based and server-to-server connections, we will enable TLS 1.3 on the endpoints listed below. This enhancement is optional and will supplement the existing TLS 1.2 support, which will remain in place with no plans for removal.
The changes will be implemented on the following dates and endpoint URLs:
Testing environment
: May 26, 2026
ics2wstesta.ic3.com
ics2wstest.ic3.com
apitest.cybersource.com
Production environment
: June 2, 2026
ics2wsa.ic3.com
ics2ws.ic3.com
api.cybersource.com
api.in.cybersource.com
ics2ws.in.ic3.com
Please contact your Customer Support representatives for any questions you may have about this change.

TLS Certificate Lifetime Reduction

In alignment with new CA/Browser Forum regulations, the maximum TLS certificate lifetime will be reduced gradually as follows:
• From today until March 15, 2026, the maximum lifetime for a TLS certificate is 398 days.
• March 15, 2026, the maximum lifetime for a TLS certificate will be 200 days.
• March 15, 2027, the maximum lifetime for a TLS certificate will be 100 days.
• March 15, 2029, the maximum lifetime for a TLS certificate will be 47 days.
For more information about the TLS certificate lifetime changes, please visit the following link:
How will this change affect connectivity?
Server level (leaf) SSL/TLS certificates issued by Cybersource will remain valid until their scheduled expiration. Server level (leaf) TLS certificates have shorter lifespans and must be reissued more frequently. Cybersource therefore recommends that clients trust the root certificate instead.
What is our recommendation?
We continue to recommend trusting the Root TLS certificates for all secure endpoints. This approach removes the need for periodic renewal of server level certificates and helps prevent connection failures caused by expired leaf certificates.
How can I tell what TLS certificate I am using?
Contact your server administrator or your network support team.
Where can I find the TLS Root certificate?
Be sure that you continue to trust the root certificate to maintain connectivity with supported endpoints. You can download the root certificate here:
Please contact your Customer Support representatives for any questions you may have about this change.

Webhooks Updates

Webhooks version 1 will be decommissioned in April 2026. See Webhooks version 2 in the Developer Center.

Features Introduced This Week

Transaction Details
 | RM-37859

Description
This release updates the Business Center's Transaction Details page. In Request Information tab, the Status field will no longer be visible. In Processor Information tab, the Status field is renamed Processor Status.
Mandate
Does not apply.
Audience
Global.
Benefit
Users will now see a standarized view of the transaction status.
Technical Details
None.
Important Dates
Released production February 26, 2026.

Fixed Issues

No customer-facing fixes were released this week.

Known Issues

Flex Microform
 | EPS-36000

Description
Some of the custom styling elements of Flex Microform do not take affect when applied.
Audience
Users of Flex Microform.
Technical Details
None.
Workaround
None.

.Net SDK
 | EPS-36468

Description
There is a minor bug in version 1.51 of the .NET SDK that affects the responses from GET requests made to the
tms/v1/paymentinstruments/{paymentInstrumentId}
 endpoint. The values of
expirationPrinted
 and
securityCodePrinted
 use the
string
 data type instead of
boolean
.
Audience
Users of the .Net SDK.
Technical Details
None.
Workaround
None.