TLS 1.2: Update 27 June 2018
What is TLS and SSL? (source: https://en.wikipedia.org/wiki/Transport_Layer_Security)
Transport Layer Security (TLS) – and its predecessor, Secure Sockets Layer (SSL), which is now deprecated by the Internet Engineering Task Force  (IETF) – are cryptographic protocols that provide communications security over a computer network. Several versions of the protocols find widespread use in applications such as web browsing, email, instant messaging, and voice over IP (VoIP). Websites are able to use TLS to secure all communications between their servers and web browsers.
The TLS protocol aims primarily to provide privacy and data integrity between two or more communicating computer applications.:3 When secured by TLS, connections between a client (e.g., a web browser) and a server (e.g., wikipedia.org) have one or more of the following properties:
In addition to the properties above, careful configuration of TLS can provide additional privacy-related properties such as forward secrecy, ensuring that any future disclosure of encryption keys cannot be used to decrypt any TLS communications recorded in the past.
TLS supports many different methods for exchanging keys, encrypting data, and authenticating message integrity (see § Algorithm below). As a result, secure configuration of TLS involves many configurable parameters, and not all choices provide all of the privacy-related properties described in the list above (see the § Key exchange (authentication), § Cipher security, and § Data integrity tables).
Attempts have been made to subvert aspects of the communications security that TLS seeks to provide, and the protocol has been revised several times to address these security threats (see § Security). Developers of web browsers have also revised their products to defend against potential security weaknesses after these were discovered (see TLS/SSL support history of web browsers).
The TLS protocol comprises two layers: the TLS record and the TLS handshake protocols.
Sabre TLS/SSL Protocol
The SSL and TLS protocols are used in conjunction with a SSL web certificate to encrypt traffic between a browser and web application. This is to allow secure communication over the internet for keeping private data private.
All customers need to upgrade their servers to accommodate this requirement in order to ensure connectivity.
Update as of June 30, 2018
Sabre no longer allows interfaces between its systems and third party vendors as of June 30, 2018 to be in PCI compliance. This removes the security vulnerability exposed by not having TLS 1.2 certification. There are no exceptions for hotels or brands, including Preferred Travel Group.
If a hotel finds that its interface is down, they should call SHS Customer Care to identify the problem. If this is due to a TLS 1.2 certification issue, SHS can identify and share the IP address that requires certification. The hotel should then reach to the vendor that is responsible for that IP address and receive an upgrade to the required certificate.
Preferred Travel Group, Inc. has no involvement nor influence in interface certification and cannot assist in this process. During the time that the interface is down, the hotel is responsible for:
Note that bookings will not be transmitted back up to the CR in a two-way enhanced interface.
To solve the interface issue, please contact the vendor lacking the appropriate certification (this can be identified through the violating IP address from SHS Customer Care). Once the vendor has upgraded the certification, please contact SHS Customer Care to verify and reinstate the interface. Do not contact Preferred Travel Group as we are unable to upgrade systems to the correct certification.
Global SHS Customer Support Numbers: http://www.sabrehospitality.com/contact/customer-support
SHS Support Portal: https://sabrehospitality.my.salesforce.com/secur/login_portal.jsp?orgId=00D300000000A4i&portalId=06060000000D2J3
Recent News: https://preferrednet.net/revenue-distribution/latest-news-updates/latest-news-updates/action-required-prepare-now-for-the-pci-mandate-july-2018/
Voice Agent Users: https://preferrednet.net/revenue-distribution/latest-news-updates/latest-news-updates/action-required-by-june-17-2018-synxis-voice-agent-windows-users-only-tls-12-mandate/
2015 Article From PCI about TLS 1.2 and Security Vulnerability: https://blog.pcisecuritystandards.org/migrating-from-ssl-and-early-tls
2017 Update From PCI about migrating from SSL to TLS 1.2: https://blog.pcisecuritystandards.org/are-you-ready-for-30-june-2018-sayin-goodbye-to-ssl-early-tls
Oracle/Opera PMS Information: https://www.oracle.com/technetwork/topics/security/poodlecve-2014-3566-2339408.html
Attachment: SSL/TLS Protocol Information
Attachment: SynXis Credit Card Access and Interfaces
Attachment: Credit Card Helpful Tips
Attachment: PCI TLS Resource Guide