我们强烈建议您使用由 Mozilla CA 认证程序中包含的根证书颁发的证书,以降低保持连接正常运行所需的维护等级。但是,如有必要,我们允许合作伙伴颁发我们信任的自签名证书。
加密套件
服务器必须支持这些加密套件中的至少一个,并且不应支持除以下套件之外的加密套件:
ECDHE-ECDSA-AES128-GCM-SHA256
ECDHE-RSA-AES128-GCM-SHA256
ECDHE-ECDSA-CHACHA20-POLY1305
ECDHE-RSA-CHACHA20-POLY1305
ECDHE-ECDSA-AES128-SHA256
ECDHE-RSA-AES128-SHA256
保留所有权利。Java 是 Oracle 和/或其关联公司的注册商标。
最后更新时间 (UTC):2024-10-16。
[null,null,["最后更新时间 (UTC):2024-10-16。"],[[["One Time Payment Code API endpoints must be served over HTTPS with TLS 1.2 or higher for secure transport."],["API clients need to have common name (CN) checking enabled and the server's CN should match the hostname for verification."],["While certificates from the Mozilla CA certification program are recommended, self-signed certificates can be used if necessary but may require more maintenance."],["Servers are required to support at least one of the specified cipher suites (ECDHE-ECDSA-AES128-GCM-SHA256, ECDHE-RSA-AES128-GCM-SHA256, ECDHE-ECDSA-CHACHA20-POLY1305, ECDHE-RSA-CHACHA20-POLY1305, ECDHE-ECDSA-AES128-SHA256, ECDHE-RSA-AES128-SHA256) for secure communication."]]],["One Time Payment Code utilizes HTTPS with TLS 1.2 or higher for transport layer security. API endpoints require HTTPS, with clients enabling common name (CN) checks, matching the server's CN or wildcards to the hostname. Certificates from the Mozilla CA program are recommended, though self-signed certificates are permitted. The server must support at least one of the listed cipher suites and must not use other cipher suites. If a certificate is revoked, you will be asked for an immediate replacement.\n"]]