📣 Upgrade your integration to continue accepting Braintree payments #1277
Description
UPDATE❗️
As of April 22, 2025, the expiration date has been extended to March 30, 2026
Upgrade your integration to continue accepting Braintree payments
Braintree updated the root SSL certificate provider for api.braintreegateway.com (sandbox and prod) on April 12, 2024. The SSL certificates for current iOS SDK versions (v5 and v6) are set to expire by March 30, 2026.
If you do not update your SDK to the latest version with the updated certificates by March 30, 2026, 100% of your impacted traffic (client via the Android or iOS SDK, server via the server SDKs, server via self-pinning) will fail.
To reduce the impact, your developer will need to update your SDK to version 6.17.0. For details on how to include the SDK, see our setup guide found here.
When do I need to make this change?
By March 30, 2026
Is there any flexibility in the deadline?
Please work with your TAM, if assigned one, and your team to ensure you will meet the deadline in time.
What if I’m using a lower version?
| SDK | Update with new cert? | Details |
|---|---|---|
| Android SDK v3 | No | Upgrade to v4.45.0 or later |
| Android SDK v4 | Yes | Upgrade to v4.45.0 or later |
| Android SDK v5 | Yes | Upgrade to 5.0 or later |
| Android Drop-In SDK v5 | No | Upgrade to v6.16 or later |
| Android Drop-In SDK v6 | Yes | Upgrade to v6.16 or later. |
| SDK | Update with new cert? | Details |
|---|---|---|
| iOS SDK v5 | Yes | Upgrade to v5.26.0 or later |
| iOS SDK v6 | Yes | Upgrade to v6.17.0 or later |
| iOS Drop-In SDK v9* | No | Update v9.12.2 or later. |
*Upgrade to Braintree iOS SDK v5.26.0+ to continue using Drop-In SDK.
Any lower versions must migrate to this version by March 30, 2026 to avoid impact of buyer traffic to Braintree SDKs.
What changes does my developer need to make to my integration?
Your developers needs to update the SDK (client and server) to the latest version to eliminate customer service disruptions and for good security practice.
Braintree's official recommendation is that Merchants use official SDKs, not modified ones. We cannot support modified SDKs. Reference our docs for our official SDK - https://developer.paypal.com/braintree/docs/
It is suggested to make this update as soon as possible to reduce any impacts to the customer experience.
I've updated my SDK but I'm still getting emails to update
Braintree regularly pulls the latest list of impacted Merchants who need to update their SDK version before sending each email. If you have communicated with your TAM that you will updated but have not, then you will continue to receive email reminders until you have completed the update.
What happens if I don’t update or miss the deadline?
If you are still processing on a legacy SDK when our SSL Root Certificate update goes live, your API calls will no longer be able to reach Braintree's servers. Your customers will start to see errors when trying to complete checkout and their app logs will show SSL-related errors.
As a result, the specific error message you encounter won't be from Braintree, but rather from the language or framework you are using. The error message will likely be unique to that language or framework, but you can expect it to mention SSL – something along the lines of an invalid certificate, a refused connection, a failed handshake, etc. If you begin to encounter an error along those lines, double check that your integration has been updated to at least the minimum version, and then feel free to reach back out to us for further support.
What region is impacted by this change?
All (global)