PCI SECURITY STANDARDS & PA-DSS
O DSS (Data Security Standards) of PCI (Payment Card Industry) is the global data security standard adopted by all credit and debit card systems.
It is mandatory for all organizations that process, store or transmit cardholder data or confidential authentication data.
The PCI DSS standard consists of standards that define best security practices to prevent fraud by controlling credit card information. Organizations of all sizes that process, store, or transmit card data or sensitive authentication data shall comply with PCI DSS.
PCI Security Standards are technical and operational requirements established by the PCI Security Standards Council (PCI), which is designed to protect cardholder data, and is funded by the five major global brands in the payment industry: American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. These companies have agreed to incorporate PCI DSS with the mandatory technical requirements for each of their data security programs.
PA-DSS focuses on a set of requirements adopted by PCI DSS with best practices for payment applications, directing software vendors in developing applications to store, process, or transmit cardholder payment data as part of the authorization process, or payment of the card, so as to guarantee the security of the information.
Using an application or software compatible with the PA-DSS does not make a PCI DSS compliant organization.
The environment in which the application will operate must be compatible with the PCI DSS and the PA-DSS compliant application, according to the PA-DSS Secure Implementation Guide, which is offered by the payment application vendor.
Download and get to know the SECURE IMPLEMENTATION GUIDE PA-DSS PORTAL CARD.