If you want to connect your software (e.g. a channel manager or property management system) to the Booking.com Connectivity APIs, the software must meet these technical security requirements:
- it supports TLS version 1.2;
- it uses our approved set of ciphers (cryptographic algorithms).
Read on for more details.
TLS
TLS stands for Transport Layer Security. It is a security protocol that ensures data exchanged over a network can only be accessed by the right people and systems.
The Booking.com Connectivity APIs use TLS version 1.2. You can only use the APIs if your software supports this TLS version.
Learn more about TLS on Wikipedia.
Cipher suites
A cipher suite is a set of algorithms that help secure a network connection which uses TLS. There are hundreds of different cipher suites that contain different combinations of these algorithms. Some cipher suites offer better security than others. Learn more on Wikipedia.
The Booking.com Connectivity APIs allow the following cipher suites. Your software must use these suites in order to successfully communicate with the APIs.
OpenSSL |
IANA |
ID |
ECDHE-ECDSA-AES128-GCM-SHA256 |
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 |
0xC0,0x2B |
ECDHE-RSA-AES128-GCM-SHA256 |
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 |
0xC0,0x2F |
ECDHE-ECDSA-AES256-GCM-SHA384 |
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 |
0xC0,0x2C |
ECDHE-RSA-AES256-GCM-SHA384 |
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 |
0xC0,0x30 |
ECDHE-ECDSA-AES256-SHA384 |
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 |
0xC0,0x24 |
ECDHE-RSA-AES256-SHA384 |
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 |
0xC0,0x28 |
ECDHE-ECDSA-CHACHA20-POLY1305 |
TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 |
0xCC,0xA9 |
ECDHE-RSA-CHACHA20-POLY1305 |
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 |
0xCC,0xA8 |
ECDHE-ECDSA-AES128-SHA256 |
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
0xC0,0x23 |
ECDHE-RSA-AES128-SHA256 |
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 |
0xC0,0x27 |
Comments
0 comments
Article is closed for comments.