BBNC 7.1 - Focus On Security
Hello again!
As I mentioned last week, the NetCommunity team has been working diligently on our next release which will be available in October. As part of our normal product improvement processes, we review our security measures, protocols, and infrastructure on an ongoing basis. Every release is tested and we strive to certify our products with the current payment industry standards for PCI-DSS and PA-DSS. BBNC 7.0 added support for TLS 1.2 which was required for PCI-DSS 3.1 compliance.
We are pleased to provide some advance notice of changes in the upcoming Blackbaud NetCommunity version 7.1, which will comply with Payment Application Data Security Standard (PA-DSS) version 3.2, released by the PCI Security Standards Council in June 2016.
More information about PA-DSS v 3.2 is available via press release from the PCI Security Standards Council: https://www.pcisecuritystandards.org/pdfs/PA_DSS_3.2_Press_Release.pdf
As a result of this recent update to the PA-DSS standards, we have made some changes in BBNC 7.1 -
Pallavi Paranjape
Product Manager – Blackbaud NetCommunity
As I mentioned last week, the NetCommunity team has been working diligently on our next release which will be available in October. As part of our normal product improvement processes, we review our security measures, protocols, and infrastructure on an ongoing basis. Every release is tested and we strive to certify our products with the current payment industry standards for PCI-DSS and PA-DSS. BBNC 7.0 added support for TLS 1.2 which was required for PCI-DSS 3.1 compliance.
We are pleased to provide some advance notice of changes in the upcoming Blackbaud NetCommunity version 7.1, which will comply with Payment Application Data Security Standard (PA-DSS) version 3.2, released by the PCI Security Standards Council in June 2016.
More information about PA-DSS v 3.2 is available via press release from the PCI Security Standards Council: https://www.pcisecuritystandards.org/pdfs/PA_DSS_3.2_Press_Release.pdf
As a result of this recent update to the PA-DSS standards, we have made some changes in BBNC 7.1 -
- Site-wide secure pages (via https) is now required. Https-only is fast becoming an industry standard protocol. This option has always been available to you via an Administrative configuration setting in NetCommunity. if you have not been taking advantage of this setting, click here to see how you can enable We recommend that you enable site wide secure pages as soon as possible, so that you can make any adjustments needed to your website. BBNC 7.1 will permanently enable site-wide secure pages (over https). This means that all NetCommunity pages now will be rendered only over https. Click here to see the full FAQs on how this may affect your websites.
- We have also changed the way BBNC encrypts and stores passwords. This change will be transparent to most organizations. However, any third-party integrations that use Single Sign On for authentication might be affected. You will need to engage those third-parties to review the changes required by PA-DSS v 3.2 and determine how they might affect integration with NetCommunity.
Pallavi Paranjape
Product Manager – Blackbaud NetCommunity
0
Comments
-
In reference to your article, does it mean that in order to make a gift on a BBNC donation page (Spark), that the user would need to be logged into his/her user account on BBNC? Currently that is not required.0
-
Hi Julie,
No. Donors will not be required to logged in or even register before they make a donation. Donation pages and any other transaction pages (such as events, membership, user registration, etc.) are already secure and will not be impacted by any of the security changes coming in BBNC 7.1.
Best,
Pallavi Paranjape0
Categories
- All Categories
- 6 Blackbaud Community Help
- 209 bbcon®
- 1.4K Blackbaud Altru®
- 395 Blackbaud Award Management™ and Blackbaud Stewardship Management™
- 1.1K Blackbaud CRM™ and Blackbaud Internet Solutions™
- 15 donorCentrics®
- 359 Blackbaud eTapestry®
- 2.5K Blackbaud Financial Edge NXT®
- 646 Blackbaud Grantmaking™
- 564 Blackbaud Education Management Solutions for Higher Education
- 3.2K Blackbaud Education Management Solutions for K-12 Schools
- 934 Blackbaud Luminate Online® and Blackbaud TeamRaiser®
- 84 JustGiving® from Blackbaud®
- 6.4K Blackbaud Raiser's Edge NXT®
- 3.7K SKY Developer
- 243 ResearchPoint™
- 118 Blackbaud Tuition Management™
- 165 Organizational Best Practices
- 238 The Tap (Just for Fun)
- 33 Blackbaud Community Challenges
- 28 PowerUp Challenges
- 3 (Open) Raiser's Edge NXT PowerUp Challenge: Product Update Briefing
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Standard Reports+
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Email Marketing
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Gift Management
- 4 (Closed) Raiser's Edge NXT PowerUp Challenge: Event Management
- 3 (Closed) Raiser's Edge NXT PowerUp Challenge: Home Page
- 4 (Closed) Raiser's Edge NXT PowerUp Challenge: Standard Reports
- 4 (Closed) Raiser's Edge NXT PowerUp Challenge: Query
- 779 Community News
- 2.9K Jobs Board
- 53 Blackbaud SKY® Reporting Announcements
- 47 Blackbaud CRM Higher Ed Product Advisory Group (HE PAG)
- 19 Blackbaud CRM Product Advisory Group (BBCRM PAG)