Important IndieCommerce Security Update
June 9, 2015

Dear IndieCommerce user,

A recent change in PCI security requirements supporting secure connections to browsers obliges us to effect an update that may have consequences for some customers, mostly those who attempt to complete a transaction on their older phone or tablet.

To be clear, customers can still access and browse sites. This update affects only the secure connection necessary to complete a credit card transaction.

We've attempted to identify affected operating systems and believe the following will not work. You'll note that with a couple of exceptions, these are mobile operating systems.
  • Windows versions older than Vista (released 2007)
  • OSX versions earlier than 10.7 (released 2011)
  • iOS versions earlier than 4 (released 2010, original iPhone and iPod touch only)
  • Windows Phone versions earlier than 8.0 (released 2012)
  • Android versions earlier than 4.3 (released 2013)
Android devices are harder to identify since Google doesn't push updates directly to phones. New releases are given to handset makers before distribution to users and some handset makers sell phones running old versions of Android long after a new version becomes available. Android 4.4, which is compatible, was released in 12/2013, but handsets running 4.3 were no doubt still in the market in the early part of 2014 and may be affected.

Again, the above list may not be authoritative. This will likely have different effects — large or small, store by store — depending upon which operating systems your customers use and whether or not they buy from your store on their mobile device.

Please write with any questions and customer feedback that may come your way.

The IndieCommerce Team
Neil Strandberg | Director of Member Technology | (800) 637-0037 x 7527
American Booksellers Association | 333 Westchester Avenue, Ste S202 | White Plains, NY 10604 |


333 Westchester Ave
Suite S202
White Plains, NY 10604
United States