Customers must take action by February 2020 to avoid service disruption
After 20 years in service and having issued nearly 2 million certificates, the SWIFTNet Certification Authority (CA) is now entering its renewal period, and we aim to make this a smooth process for our customers. The new SWIFTNet CA will provide a new level of security in the issuance of SWIFTNet Public Key Infrastructure (PKI) certificates.
What must I do by when?
The new SWIFTNet CA certificate is now available for installation.
To avoid service disruptions upon the activation of the new SWIFTNet CA in March 2020, customers are required to operate a supported and compliant infrastructure. Depending upon the products or services you use, mandatory actions are required by February 2020.
|SWIFTNet Link, Alliance Lite2, Alliance Lifeline, Alliance Remove Gateway, Alliance Gateway Instant, Sanctions Screening Connector, SWIFT Integration Layer, gpi Connector, Alliance Access/Entry/Alliance Gateway/Alliance Web Platform SE using personal tokens for 2FA etc,|
Customers using any web based service to reach on-line SWIFT application must import the new SWIFTNet CA in each user browser trust store between September 2019 and February 2020 (details available here)
|gpi Tracker, Sanctions Screening, Payment Control, SWIFTNet Online Operations Manager, T2S and TIPS U2A etc.…|
Note: When using Alliance Web Platform SE, you must upgrade to WebAccess GUI package 7.2.72 or higher.
SWIFTNet CA Renewal timeline
September 2019: SWIFT issued the new SWIFTNet CA certificate, which will be either automatically downloaded by Root Key Renewal compatible software or will require manual action by customers (depending on which SWIFT products and services a customer uses). Certificates will continue to be issued by the current SWIFTNet CA.
March 2020: Activation of the new SWIFTNet CA by SWIFT. The new SWIFTNet CA will be used to issue PKI certificates from now on.
If you require assistance in upgrading to compatible software please contact your account/sales manager or your regional office.
About SWIFTNet PKI
SWIFTNet PKI provides certification services to entities that send and receive messages or files over the SWIFTNet network. These entities are typically end users, applications, and interfaces that apply digital signatures and encryption to messages when exchanging information. Certification services include the issuance and management of certificates such as business, personal token, and webserver certificates. All customer requests to issue PKI certificates are processed by the SWIFTNet Certification Authority (CA).