This specification will be enforced in the next version of the standard (v3.1). There is no planned date as to when the new version will be formally published.
The next step up above SSL 3.0 is TLS 1.0 which is also prohibited. Equilibrium recommends starting to plan to upgrade all systems using SSL in your environment to offer only TLS 1.2 and disabling TLS 1.1 and below. Use Qualys' free SSL Test tool to understand the configuration and vulnerabilities of your SSL server.
Contact Equilibrium to learn how to upgrade your SSL servers and get ahead of the curve. Visit our Security Practice homepage and email us at
Author: Todd Bey