Frequently Asked Question

Can a QSA that is not also a P2PE Assessor validate an encryption solution meets P2PE Requirements?

No. Only P2PE Assessors are qualified by the PCI Security Standards Council to evaluate P2PE Solutions, P2PE Components and P2PE Applications. Note that only a P2PE Assessor is qualified to evaluate P2PE Solutions (including Merchant-Managed Solutions) and P2PE Components, while a P2PE Application Assessor is additionally qualified to evaluate P2PE Applications.

May 2024
Article Number: 1246

Featured FAQ Articles