Frequently Asked Question
How can I check whether a payment application is PA-DSS validated?
Each application on the list has a version number which represents the specific version of the application that was reviewed in the PA-DSS assessment. The format of the version number is determined by the application vendor and is updated by the vendor according to their defined versioning methodology. Note that an application may have multiple versions listed as PA-DSS validated, but only those specific versions listed on the PCI SSC website are considered PA-DSS validated.
Please also note that compliance mandates for use of PA-DSS validated payment applications are managed by the individual payment brands, not by the PCI Security Standards Council. For queries about how usage of a particular payment application affects PCI DSS compliance, please contact your acquirer (merchant bank) or the payment brands directly.
Featured FAQ Articles
Most Recently Updated
Is the expectation that any PFI investigation initiated must result in a PFI Final Report?
Can SAQ eligibility criteria be used for determining applicability of PCI DSS requirements for assessments documented in a Report on Compliance?
Do PCI DSS requirements for keyed cryptographic hashing apply to previously hashed PANs?