POSDATA logo
 

Home  

 

Products

Solutions

Services

News

Contact

About Us

 

Electronic payment products from POSDATA

Security Regulations Information Center

Payment product security information can change from time to time. POSDATA posts this information here as we receive it. For more information or for help with all your electronic payment needs, contact our electronic payment experts. We can help you choose the right solution for your needs.

PIN Entry Device Program Information Update

Several initiatives to improve PIN security and transaction protection are approaching a key deadline in July 2010. These include adoption of Triple -DES (TDES) encryption requirements and point-of-sale PIN entry device (POS PED) hardware certification. This security standards compliance update shows the progression of the requirements, discusses Triple DES and summarizes the POS PED categories and applicatble dates. Get the document in PDF format.

New PCI Security Information: PCI DSS v1.2 Released

Abstract: The Payment Card Industry Security Standards Council (PCI SSC) has released the new version 1.2 of the Data Security Standard (DSS) . Find out how this change will impact PCI validation for your company. Read more...

Interlink Merchants Must Use TDES at Point of Sale by July 2010

Abstract: The confidentiality of cardholder Personal Identification Numbers (PINs) when used at point-of-sale (POS) PIN-Entry Devices (PEDs) depends on the full compliance of all payment system participants with the Payment Card Industry (PCI) PIN Security Requirements. To ensure the continued secure protection of PIN-based transactions, Visa established requirements for the use of Triple Data Encryption Standard (TDES) for PIN encryption at all POS PEDs. Effective July 1, 2010, all Interlink-accepting POS PEDs and host systems must use TDES for the protection of PINs. Get this document in PDF format or contact us for more information on TDES.

PCI Approval Status for POS PED Terminals (Article provided by MasterCard Worldwide)

Abstract: MasterCard provides a useful table showing when a terminal can be sold, how long it can be used in the field and when it must be removed. Covers the expiry of the Pre-PCI, (VISA PED) approval.

PIN Entry Device Testing Program Changes Effective December 31, 2007

Abstract: Visa’s PIN Entry Device (PED) testing program, which was introduced in 2003, is transitioning to the PCI Security Standards Council. As part of this transition, PEDs tested under the original, Visa-only program will be removed from the Approved PIN Entry Devices list, effective December 31, 2007. Acquirers, processors, merchants and agents will need to plan now to purchase point-of-sale (POS) PEDs in compliance with these program changes.

View the announcement from VISA (includes Visa PIN Entry Device Frequently Asked Questions)

PIN Pad Security Best Practices

Abstract: Due to repeated targeting of pre-PED PIN Pads and Payment Terminals, VeriFone has developed PIN Pad Security Best Practices. These best practices first enable a retailer to determine if any existing terminals have been tampered with, and second make tampering much more difficult by implementing a comprehensive set of security controls to prevent tampering and more quickly become aware if tampering has occurred.

View the PIN Pad Security Best Practices

Additional information can be found on VeriFone's Retail Payment Security web site at www.secureretailpayments.com.

Ingenico eNTouch 1000 and eNCrypt 2100 Product Announcement

Abstract: Changes in Visa PCI security regulations may affect your Ingenico eNTouch 1000 and eNCrypt 2100 installations.

See this information in PDF format.

See also VISA PED-certified Ingenico i6550, Ingenico i6770 and Ingenico 6780 POS payment terminals.

Industry News Flash from VeriFone: Pin Pad Tampering

VeriFone Pin Pad for illustrationAbstract: VeriFone assures that none of its VISA PED or PCI PED (Payment Card Industry PIN Entry Device) approved terminals were part of the recent tampering stories and that solutions such as the VeriFone MX800 Series meet all current PCI PED Security Requirements, including tamper prevention and detection. VeriFone explains the process of tampering, describes current industry security requirements to prevent tampering, describes payment terminal security, and outlines the steps needed to improve PIN pad security.

Get this document in PDF format or visit the VeriFone website. VISA also provides security information on their website.

White papers

Learn about the advantages of online debit and electronic signature capture for retailer

Press releases about our partners

POSDATA Expands Support for ISOs with Hypercom SmartPayments EasyRetail

 

POSDATA expands product line with Hypercom multi-lane payment terminals

Heartland Payment Systems Chooses POSDATA to Refurbish and Repair Payment Terminals

Verizon Business to Use POSDATA to Service Texas Hunting and Fishing Licensing Equipment

Fleet One, LLC Extends Support Agreement With POSDATA

 

 

© Copyright POSDATA. All rights reserved.
All company names are trademarks or registered trademarks of their respective companies.