PCI Security Standards Council has published a new version of its data security standard that calls for ending the use of the outdated Secure Sockets Layer encryption protocol that can put payment data at risk. The new guidance removes SSL, and early versions of Transport Layer Security, as examples of strong cryptography, and calls for use of a current, secure version of the protocol. As a result, SSL and early TLS can no longer be used as security controls to protect payment data after June 30, 2016. In addition to addressing SSL, the new standard includes minor changes.”]
Source: https://www.govinfosecurity.com/pci-dss-updated-to-address-ssl-risk-a-8107