Frequently Asked Question

Which PCI PTS point-of-interaction (POI) devices can be used in a validated P2PE solution?
A validated (as per the PCI P2PE Program Guide) P2PE solution/component must use a non-expired PCI-approved point-of-interaction (POI) device, which has been evaluated and approved via the PCI PTS program with SRED (secure reading and exchange of data) listed as a “function provided” and with SRED enabled and active.
The list of PTS approved POI devices can be found here.
Please also refer to the PCI P2PE standard and associated resources found in our document library for additional information.
April 2020
Article Number: 1166
Related
-
How should payment terminals be considered during a PCI DSS assessment?
-
Are P2PE Products (P2PE Solutions, P2PE Components, P2PE Applications) on the P2PE Expired Listings still considered “validated” per the P2PE Program Guide?
-
If a P2PE Solution is on PCI’s list of Point-to-Point Encryption Solutions with Expired Validations, does the solution meet the eligibility criteria for SAQ P2PE?