PCI DSS compliance
Dalenys Payment (formerly Rentabiliweb Europe) is PCI DSS (Payment Card Industry Data Security Standard) Level 1 Service Provider certified. It is the highest level of requirement in terms of security for banking data processing.
SSL / TLS certificate
All HTTP exchanges with the Dalenys platform should be secured with TLS.
The recommended TLS version is the 1.2.
We plan to disable the support of TLS1.0 and TSL1.1 in the upcoming months in response to the doubts concerning the level of security of these versions.
Here is a PHP code sample for configuring your curl client to force TLS1.2 HTTPS requests:
<?php $ch = curl_init($url); // ... curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); // This line force TLS1.2 protocol curl_setopt($ch, CURLOPT_SSLVERSION, CURL_SSLVERSION_TLSv1_2); $data = curl_exec($ch); curl_close($ch); // ...
TLS certificate for your domain on your server
If you want to use external elements on your payment form (links, images, CSS, scripts, etc.) or if you want your exchanges with your cms to benefit from optimal security conditions, you must own a TLS certificate on your servers.
In terms of security, it is a highly recommended prerequisite. Be prepared : Depending on the certification authority and the certificate type you are ordering, the whole process may take up to several weeks. The following websites offer interesting deals:
Dalenys’s TLS certificate authority
The Dalenys platform uses a TLS certificate with an extended validation allowing a higher than 256-bit SSL encryption.
99% of the web browsers recognize these certificates and display a “green” address bar along with a padlock when you reach the Dalenys platform. These are authenticity and security symbols.
If the certification authority of Daleny’s TLS certificate is not installed on your server, you must download and add the following files to your server configuration:
- DigiCert SHA2 Extended Validation Server CA
- DigiCert High Assurance EV Root CA
- DigiCert SHA2 Secure Server CA
- DigiCert Global Root CA
Public Dalenys IP ranges to be authorized to contact your platform
184.108.40.206/27 that being:
220.127.116.11/27 that being:
18.104.22.168/27 that being: