🔒 TLS 1.3 Minimum Enforcement
3 months ago by Pierre Delarroqua
Upgrading to TLS 1.3 strengthens the security of data transmitted between Buró de Ingresos and your systems, and aligns us with the standards required by regulators and our clients.
- Starting on March 9, 2026, the Buró de Ingresos API will require a minimum TLS version of 1.3 for all incoming connections.
- Connections using TLS 1.2 or earlier will be rejected. Please ensure your HTTP client or server configuration supports TLS 1.3 before the cutoff date.
- This change applies to all API endpoints under
api.burodeingresos.com.
⚠️ What Changes
- TLS 1.2 and below — connections will be terminated with a handshake failure. No API response will be returned.
- TLS 1.3 — no action required if you are already on 1.3.
💡 What This Means for You
- Check your client library — most modern HTTP clients (curl 7.61+, Python
requestswith OpenSSL 1.1.1+, Node.js 12+) support TLS 1.3 out of the box. - Check your server or proxy — if your requests route through an internal proxy, load balancer, or API gateway, verify that component also supports TLS 1.3.
- No payload or authentication changes — this is a transport-layer change only. Request structure, headers, and authentication remain identical.
- Action required only if you are on TLS 1.2 — if you are already using TLS 1.3, no action is needed.
🛠️ How to Verify Your TLS Version
You can test your connection using:
curl --tlsv1.3 -I https://api.burodeingresos.comIf the request succeeds, your environment supports TLS 1.3 and you are good to go.