PCI Security Standards Council Documents

PCI Security Standards Council Documents Latest documents from PCI SSC https://www.pcisecuritystandards.org/document_library/ http://blogs.law.harvard.edu/tech/rss Tue, 28 Apr 2026 10:22:41 +0000 Card Production and Provisioning Technical FAQs Tue, 21 Apr 2026 07:00:00 +0000 Secure Software Change Impact Template Tue, 10 Feb 2026 08:00:00 +0000 Secure Software Report on Validation Template Tue, 10 Feb 2026 08:00:00 +0000 Secure Software Attestation of Validation Template Tue, 10 Feb 2026 08:00:00 +0000 PIN ROC Reporting Template Tue, 03 Feb 2026 08:00:00 +0000 PIN Attestation of Compliance (AOC) Tue, 03 Feb 2026 08:00:00 +0000 P2PE v3.x Technical FAQs Thu, 29 Jan 2026 08:00:00 +0000 Secure Software Program Guide Thu, 15 Jan 2026 08:00:00 +0000 Secure Software Standard Summary of Changes Thu, 15 Jan 2026 08:00:00 +0000 Secure Software Standard Thu, 15 Jan 2026 08:00:00 +0000 Secure Software Program Guide Thu, 15 Jan 2026 08:00:00 +0000 Secure Software Standard – Sensitive Asset Identification Thu, 15 Jan 2026 08:00:00 +0000 PCI 3DS Data Matrix Thu, 15 Jan 2026 08:00:00 +0000 Independent Incident Response Report Template Mon, 22 Dec 2025 08:00:00 +0000 Card Production AOC - Physical Mon, 22 Dec 2025 08:00:00 +0000 Card Production AOC SOC - Physical Mon, 22 Dec 2025 08:00:00 +0000 Card Production AOC – Logical Mon, 22 Dec 2025 08:00:00 +0000 PTS POI Technical Frequently Asked Questions Mon, 15 Dec 2025 08:00:00 +0000 PCI MPoC Guidance Wed, 19 Nov 2025 08:00:00 +0000 Mobile Payments on COTS (MPoC®) Technical FAQs Thu, 09 Oct 2025 07:00:00 +0000 ISA Training Case Study: WestJet Fri, 26 Sep 2025 07:00:00 +0000 Contactless Payments on COTS (CPoC™) Technical FAQs Fri, 12 Sep 2025 07:00:00 +0000 SPoC Technical FAQs Fri, 12 Sep 2025 07:00:00 +0000 Authentication Guidance Thu, 28 Aug 2025 07:00:00 +0000 Authentication Guidance - A Summary Thu, 28 Aug 2025 07:00:00 +0000 Cryptography Guidance Tue, 26 Aug 2025 07:00:00 +0000 PTS PIN Technical Frequently Asked Questions Mon, 25 Aug 2025 07:00:00 +0000 Application P-ROV Template Thu, 17 Jul 2025 07:00:00 +0000 Key Management Services P-ROV Template Thu, 17 Jul 2025 07:00:00 +0000 Merchant-Managed Solution P-ROV Template Thu, 17 Jul 2025 07:00:00 +0000 Encryption Management Services P-ROV Template Thu, 17 Jul 2025 07:00:00 +0000 Decryption Management Services P-ROV Template Thu, 17 Jul 2025 07:00:00 +0000 Solution P-ROV Template Thu, 17 Jul 2025 07:00:00 +0000 P2PE Summary of Changes Mon, 30 Jun 2025 07:00:00 +0000 P2PE Standard Mon, 30 Jun 2025 07:00:00 +0000 Device Testing and Approval Program Guide Tue, 17 Jun 2025 07:00:00 +0000 PTS HSM Technical Frequently Asked Questions Tue, 10 Jun 2025 07:00:00 +0000 Point of Interaction (POI) Modular Security Requirements Thu, 29 May 2025 07:00:00 +0000 Point of Interaction (POI) Thu, 29 May 2025 07:00:00 +0000 Point of Interaction (POI) Modular Security Requirements Summary of Changes Thu, 29 May 2025 07:00:00 +0000 Secure Software v1.x Technical FAQs Wed, 28 May 2025 07:00:00 +0000 MPoC Integration Report Wed, 28 May 2025 07:00:00 +0000 Vulnerability Management Infographic Wed, 28 May 2025 07:00:00 +0000 Vulnerability Management Infographic Wed, 28 May 2025 07:00:00 +0000 QPA Program Guide Mon, 19 May 2025 07:00:00 +0000 QPA Program Guide Mon, 19 May 2025 07:00:00 +0000 Guidance for PCI DSS Requirements 6.4.3 and 11.6.1 Tue, 22 Apr 2025 07:00:00 +0000 SAQ Instructions and Guidelines Tue, 22 Apr 2025 07:00:00 +0000 Guidance for PCI DSS Requirements 6.4.3 and 11.6.1 Tue, 22 Apr 2025 07:00:00 +0000 QPA Qualification Requirements Wed, 26 Mar 2025 07:00:00 +0000 QPA Qualification Requirements Wed, 26 Mar 2025 07:00:00 +0000 Integrating Artificial Intelligence in PCI Assessments Guidelines v1.0 Mon, 17 Mar 2025 07:00:00 +0000 MPoC Service AOV Wed, 26 Feb 2025 08:00:00 +0000 MPoC Solution AOV Wed, 26 Feb 2025 08:00:00 +0000 MPoC Software AOV Wed, 26 Feb 2025 08:00:00 +0000 PCI DSS Quick Reference Guide Thu, 30 Jan 2025 08:00:00 +0000 AOC SAQ A Thu, 30 Jan 2025 08:00:00 +0000 SAQ A Thu, 30 Jan 2025 08:00:00 +0000 Prioritized Approach Tool Wed, 29 Jan 2025 08:00:00 +0000 Prioritized Approach for PCI DSS Wed, 29 Jan 2025 08:00:00 +0000 Mobile Payments on COTS (MPoC®) Program Guide Wed, 29 Jan 2025 08:00:00 +0000 SAQ D Service Provider Thu, 16 Jan 2025 08:00:00 +0000 ROC Template Thu, 16 Jan 2025 08:00:00 +0000 Mobile Payments on COTS (MPoC®) Summary of Changes Tue, 24 Dec 2024 08:00:00 +0000 AOC SAQ D - Service Providers Mon, 02 Dec 2024 08:00:00 +0000 Mobile Payments on COTS Security and Test Requirements Mon, 25 Nov 2024 08:00:00 +0000 AOC SAQ A-EP Fri, 11 Oct 2024 07:00:00 +0000 AOC SAQ B-IP Fri, 11 Oct 2024 07:00:00 +0000 AOC SAQ C Fri, 11 Oct 2024 07:00:00 +0000 SAQ A-EP Fri, 11 Oct 2024 07:00:00 +0000 AOC SAQ B Fri, 11 Oct 2024 07:00:00 +0000 SAQ B-IP Fri, 11 Oct 2024 07:00:00 +0000 AOC SAQ C-VT Fri, 11 Oct 2024 07:00:00 +0000 SAQ C Fri, 11 Oct 2024 07:00:00 +0000 AOC SAQ D - Merchants Fri, 11 Oct 2024 07:00:00 +0000 AOC SAQ P2PE Fri, 11 Oct 2024 07:00:00 +0000 AOC SAQ SPoC Fri, 11 Oct 2024 07:00:00 +0000 SAQ SPoC Fri, 11 Oct 2024 07:00:00 +0000 SAQ P2PE Fri, 11 Oct 2024 07:00:00 +0000 SAQ D Merchant Fri, 11 Oct 2024 07:00:00 +0000 SAQ B Fri, 11 Oct 2024 07:00:00 +0000 SAQ C-VT Fri, 11 Oct 2024 07:00:00 +0000 PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures Mon, 09 Sep 2024 07:00:00 +0000 P2PE Change Impact Template Mon, 02 Sep 2024 07:00:00 +0000 P2PE Product AOV Mon, 02 Sep 2024 07:00:00 +0000 PCI DSS AOC - Merchants Mon, 26 Aug 2024 07:00:00 +0000 Sample Templates: Customized Approach Mon, 26 Aug 2024 07:00:00 +0000 Supplemental ROC Template - Designated Entities Mon, 26 Aug 2024 07:00:00 +0000 ROC Template Summary of Changes Mon, 26 Aug 2024 07:00:00 +0000 PCI DSS AOC - Service Providers Mon, 26 Aug 2024 07:00:00 +0000 FAQs for use with ROC Template Mon, 26 Aug 2024 07:00:00 +0000 AOC for ROC - Service Providers Extra Form - Part 2g Mon, 26 Aug 2024 07:00:00 +0000 Supplemental AOC - Designated Entities Mon, 26 Aug 2024 07:00:00 +0000 PCI SSC Business License Requirements Sat, 24 Aug 2024 07:00:00 +0000 PCI SSC Business License Requirements Sat, 24 Aug 2024 07:00:00 +0000 PCI SSC Business License Requirements Sat, 24 Aug 2024 07:00:00 +0000 PCI SSC Business License Requirements Sat, 24 Aug 2024 07:00:00 +0000 PCI SSC Business License Requirements Sat, 24 Aug 2024 07:00:00 +0000 PCI SSC Business License Requirements Sat, 24 Aug 2024 07:00:00 +0000 PCI DSS Summary of Changes Sat, 24 Aug 2024 07:00:00 +0000 PCI SSC Business License Requirements Sat, 24 Aug 2024 07:00:00 +0000 PCI SSC Business License Requirements Sat, 24 Aug 2024 07:00:00 +0000 ASV Resource Guide Wed, 10 Jul 2024 07:00:00 +0000 ASV Resource Guide Wed, 10 Jul 2024 07:00:00 +0000 PCI Forensic Investigators (PFI) Qualification Requirements Fri, 28 Jun 2024 07:00:00 +0000 PCI Forensic Investigator (PFI) Program Guide Fri, 28 Jun 2024 07:00:00 +0000 PFI Preliminary Incident Response Report Template Fri, 28 Jun 2024 07:00:00 +0000 Final PFI Report Template Fri, 28 Jun 2024 07:00:00 +0000 PCI DSS Tue, 11 Jun 2024 07:00:00 +0000 Qualification Requirements for QSAs Wed, 29 May 2024 07:00:00 +0000 QSA Program Guide Wed, 29 May 2024 07:00:00 +0000 QSA QR Appendix A QSA Company Agreement Wed, 01 May 2024 07:00:00 +0000 PCI SSC CPE Flyer Fri, 26 Apr 2024 07:00:00 +0000 Common Payment Systems Tue, 23 Apr 2024 07:00:00 +0000 Guide to Safe Payments Tue, 23 Apr 2024 07:00:00 +0000 PTS Administrative Change Request Form Wed, 03 Apr 2024 07:00:00 +0000 PTS Attestation of Validation Form Wed, 03 Apr 2024 07:00:00 +0000 PTS Device Attestation Wed, 03 Apr 2024 07:00:00 +0000 CPSA Program Guide Thu, 28 Mar 2024 07:00:00 +0000 CPSA Qualification Requirements Thu, 28 Mar 2024 07:00:00 +0000 CPSA Program Guide Thu, 28 Mar 2024 07:00:00 +0000 CPSA Qualification Requirements Thu, 28 Mar 2024 07:00:00 +0000 QIR Implementation Instructions Wed, 27 Mar 2024 07:00:00 +0000 PCIP Qualification Requirements Fri, 01 Dec 2023 08:00:00 +0000 TRA Guidance Mon, 27 Nov 2023 08:00:00 +0000 TRA Guidance Mon, 27 Nov 2023 08:00:00 +0000 Sample Template: TRA for Activity Frequency Mon, 27 Nov 2023 08:00:00 +0000 Card Production ROC Reporting Template - Logical Tue, 21 Nov 2023 08:00:00 +0000 Card Production ROC Reporting Template SOC - Physical Tue, 21 Nov 2023 08:00:00 +0000 Card Production ROC Reporting Template - Physical Tue, 21 Nov 2023 08:00:00 +0000 3DS Core v1.x Technical FAQs Fri, 01 Sep 2023 07:00:00 +0000 AOC for SAQ D - Service Providers Extra Form - Part 2g Wed, 30 Aug 2023 07:00:00 +0000 Assessor Requalification Policy Wed, 02 Aug 2023 07:00:00 +0000 Assessor Requalification Policy Wed, 02 Aug 2023 07:00:00 +0000 Assessor Requalification Policy Wed, 02 Aug 2023 07:00:00 +0000 Assessor Requalification Policy Wed, 02 Aug 2023 07:00:00 +0000 Assessor Requalification Policy Wed, 02 Aug 2023 07:00:00 +0000 Assessor Requalification Policy Wed, 02 Aug 2023 07:00:00 +0000 Assessor Requalification Policy Wed, 02 Aug 2023 07:00:00 +0000 Assessor Requalification Policy Wed, 02 Aug 2023 07:00:00 +0000 Assessor Requalification Policy Wed, 02 Aug 2023 07:00:00 +0000 QSA QR Appendix E Associate QSA Application Wed, 28 Jun 2023 07:00:00 +0000 MPoC A&M Service AOV Mon, 12 Jun 2023 07:00:00 +0000 Extra Compensating Controls Worksheet Mon, 17 Apr 2023 07:00:00 +0000 Extra Compensating Controls Worksheet Mon, 17 Apr 2023 07:00:00 +0000 Secure Software Attestation of Validation (AOV) Fri, 14 Apr 2023 07:00:00 +0000 Secure Software Report on Validation (ROV) Template Fri, 14 Apr 2023 07:00:00 +0000 QIR Implementation Statement Thu, 30 Mar 2023 07:00:00 +0000 QIR Program Guide Thu, 30 Mar 2023 07:00:00 +0000 QIR Qualification Requirements Thu, 30 Mar 2023 07:00:00 +0000 PCI DSS v4.0 At a Glance Thu, 15 Dec 2022 08:00:00 +0000 Qualification Requirements for SSF Assessors Wed, 07 Dec 2022 08:00:00 +0000 FAQs for SSF v1.2 Wed, 07 Dec 2022 08:00:00 +0000 SSF Glossary of Terms, Abbreviations, and Acronyms Wed, 07 Dec 2022 08:00:00 +0000 Qualification Requirements for SSF Assessors Wed, 07 Dec 2022 08:00:00 +0000 ASV Program Guide Thu, 01 Dec 2022 08:00:00 +0000 P2PE Qualification Requirements Fri, 28 Oct 2022 07:00:00 +0000 Appendix C: P2PE Assessor Employee - Application Fri, 28 Oct 2022 07:00:00 +0000 Appendix A: P2PE Assessor Addendum Fri, 28 Oct 2022 07:00:00 +0000 Appendix B: P2PE Assessor Company - Application Fri, 28 Oct 2022 07:00:00 +0000 Guidance for Containers and Container Orchestration Tools Fri, 30 Sep 2022 07:00:00 +0000 Card Production Summary of Changes Mon, 12 Sep 2022 07:00:00 +0000 3DS SDK v1.x Technical FAQs Wed, 24 Aug 2022 07:00:00 +0000 PIN Security Rqmt 18-3 Key Blocks Information Supplement Wed, 13 Jul 2022 07:00:00 +0000 Card Production and Provisioning Logical Security Requirements Thu, 30 Jun 2022 07:00:00 +0000 Card Production and Provisioning Physical Security Requirements Thu, 30 Jun 2022 07:00:00 +0000 FAQs for Designated Entities Supplemental Validation Tue, 14 Jun 2022 07:00:00 +0000 Frequently Asked Questions (FAQs) for Validation Processes for Merchant-Managed Solutions Thu, 24 Feb 2022 12:00:00 +0000 Participating Organization Name Change Application Mon, 07 Feb 2022 12:00:00 +0000 Hardware Security Module (HSM) Fri, 17 Dec 2021 12:00:00 +0000 Hardware Security Module (HSM) Wed, 01 Dec 2021 08:00:00 +0000 Ransomware Resource Guide Wed, 20 Oct 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 29 Sep 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 29 Sep 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 29 Sep 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 29 Sep 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 29 Sep 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 29 Sep 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 29 Sep 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 29 Sep 2021 12:00:00 +0000 PCI SSC Remote Assessment Guidelines and Procedures Fri, 24 Sep 2021 12:00:00 +0000 Transitioning from PA-DSS to the PCI Software Security Framework Wed, 01 Sep 2021 12:00:00 +0000 FAQs for SSF v1.1 Thu, 26 Aug 2021 12:00:00 +0000 Implementing ISO Format 4 PIN Blocks Information Supplement Mon, 02 Aug 2021 12:00:00 +0000 SPoC Program Guide Thu, 20 May 2021 12:00:00 +0000 SPoC AOV Thu, 20 May 2021 12:00:00 +0000 SPoC Unsupported OS Annex Thu, 20 May 2021 12:00:00 +0000 Secure Software Program Guide Thu, 29 Apr 2021 12:00:00 +0000 P2PE Solution Inventory Template Wed, 21 Apr 2021 12:00:00 +0000 ISA Qualification Requirements Wed, 31 Mar 2021 12:00:00 +0000 QSA QR Appendix D QSA Employee Application Mon, 29 Mar 2021 12:00:00 +0000 QSA QR Appendix C QSA Company Application Mon, 29 Mar 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 24 Mar 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 24 Mar 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 24 Mar 2021 12:00:00 +0000 Qualified Security Assessor Program Guide Wed, 24 Mar 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 24 Mar 2021 12:00:00 +0000 Qualification Requirements for Qualified Security Assessors (QSA) Wed, 24 Mar 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 24 Mar 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 24 Mar 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 24 Mar 2021 12:00:00 +0000 PCI SSC CPE Maintenance Guide Wed, 24 Mar 2021 12:00:00 +0000 PCI SSC At-a-Glance Mon, 15 Mar 2021 12:00:00 +0000 PIN Security Requirements and Testing Procedures Thu, 11 Mar 2021 12:00:00 +0000 PIN Security Requirements Modifications and Testing Procedures: Summary of Changes Thu, 11 Mar 2021 12:00:00 +0000 PCI Small Merchants Case Study – Accor and VigiTrust Thu, 25 Feb 2021 12:00:00 +0000 Secure SLC Program Guide Thu, 18 Feb 2021 12:00:00 +0000 Secure SLC Standard Summary of Changes Thu, 18 Feb 2021 12:00:00 +0000 Secure SLC Standard Thu, 18 Feb 2021 12:00:00 +0000 Secure SLC Attestation of Compliance (AOC) Thu, 18 Feb 2021 12:00:00 +0000 Secure SLC Report on Compliance (ROC) Template Thu, 18 Feb 2021 12:00:00 +0000 Secure SLC Program Guide Thu, 18 Feb 2021 12:00:00 +0000 HSM Security Requirements Modifications: Summary of Changes Fri, 01 Jan 2021 08:00:00 +0000 P2PE Program Guide Wed, 16 Dec 2020 12:00:00 +0000 PCI P2PE Merchant Overview Thu, 17 Sep 2020 12:00:00 +0000 PCI P2PE At-a-Glance Thu, 17 Sep 2020 12:00:00 +0000 REB PCI PIN Security Case Study: First Tech Sat, 01 Aug 2020 12:00:00 +0000 REB PCI DSS Case Study: Cielo Sat, 01 Aug 2020 12:00:00 +0000 REB PCI PIN Security Case Study: Gertec Sat, 01 Aug 2020 12:00:00 +0000 REB PCI DSS Case Study: CSU Sat, 01 Aug 2020 12:00:00 +0000 REB PCI DSS Case Study: PicPay Sat, 01 Aug 2020 12:00:00 +0000 Assessment Guidance for Non-listed Encryption Solutions Mon, 01 Jun 2020 12:00:00 +0000 FAQs: Assessment Guidance for Non-listed Encryption Solutions Mon, 01 Jun 2020 12:00:00 +0000 Software-Based PIN Entry on COTS Security Requirements Mon, 01 Jun 2020 12:00:00 +0000 SPoC Summary of Changes Mon, 01 Jun 2020 12:00:00 +0000 Software-Based PIN Entry on COTS Test Requirements Mon, 01 Jun 2020 12:00:00 +0000 SPoC MSR Annex Mon, 01 Jun 2020 12:00:00 +0000 8 Tips to Help Small Merchants Protect Payment Card Data During COVID-19 Tue, 21 Apr 2020 12:00:00 +0000 P2PE Component P-ROV Template Thu, 12 Mar 2020 12:00:00 +0000 P2PE Merchant-Managed Application P-ROV Template Thu, 12 Mar 2020 12:00:00 +0000 P2PE Merchant-Managed Solution P-ROV Template Thu, 12 Mar 2020 12:00:00 +0000 P2PE Application P-ROV Template Thu, 12 Mar 2020 12:00:00 +0000 P2PE Solution P-ROV Template Thu, 12 Mar 2020 12:00:00 +0000 Responding to a Cardholder Data Breach Mon, 02 Mar 2020 12:00:00 +0000 PCI DSS for Large Organizations Thu, 20 Feb 2020 12:00:00 +0000 Solution AOV Sun, 01 Dec 2019 12:00:00 +0000 P2PE Glossary Sun, 01 Dec 2019 12:00:00 +0000 PIM Template Sun, 01 Dec 2019 12:00:00 +0000 Merchant-Managed Solution AOV Sun, 01 Dec 2019 12:00:00 +0000 Merchant-Managed Application AOV Sun, 01 Dec 2019 12:00:00 +0000 Application AOV Sun, 01 Dec 2019 12:00:00 +0000 Component AOV Sun, 01 Dec 2019 12:00:00 +0000 CPoC Program Guide Sun, 01 Dec 2019 12:00:00 +0000 CPoC AOV Sun, 01 Dec 2019 12:00:00 +0000 Contactless Payments on COTS (CPoC™) Security and Test Requirements Sun, 01 Dec 2019 12:00:00 +0000 Overview of PCI 3DS Core Security Standard Tue, 01 Oct 2019 12:00:00 +0000 PTS Vendor Release Agreement Sun, 01 Sep 2019 12:00:00 +0000 PA-DSS Vendor Release Agreement Sun, 01 Sep 2019 12:00:00 +0000 CPoC Vendor Release Agreement Sun, 01 Sep 2019 12:00:00 +0000 SPoC Vendor Release Agreement Sun, 01 Sep 2019 12:00:00 +0000 Software Security Framework At-a-Glance Sun, 01 Sep 2019 12:00:00 +0000 Software Security Framework Vendor Release Agreement Sun, 01 Sep 2019 12:00:00 +0000 3DS SDK Vendor Release Agreement Sun, 01 Sep 2019 12:00:00 +0000 MPoC Vendor Release Agreement Sun, 01 Sep 2019 12:00:00 +0000 P2PE Vendor Release Agreement Sun, 01 Sep 2019 12:00:00 +0000 REB PCI DSS Case Study: FIS Thu, 01 Aug 2019 12:00:00 +0000 REB PCI DSS Case Study: Decolar/Despegar Thu, 01 Aug 2019 12:00:00 +0000 PCIP Case Study: Bit9 Thu, 01 Aug 2019 12:00:00 +0000 REB PCI DSS Case Study: Braspag Thu, 01 Aug 2019 12:00:00 +0000 PCIP Case Study: Excentus Thu, 01 Aug 2019 12:00:00 +0000 P2PE Case Study: Bluefin-Hillman Thu, 01 Aug 2019 12:00:00 +0000 ISA Case Study: Rational Group Thu, 01 Aug 2019 12:00:00 +0000 ISA Case Study: Café Rio Thu, 01 Aug 2019 12:00:00 +0000 REB ISA Case Study: Braspag Thu, 01 Aug 2019 12:00:00 +0000 P2PE Case Study: IPS-Paul Smith Thu, 01 Aug 2019 12:00:00 +0000 REB ISA Case Study: TIVIT Thu, 01 Aug 2019 12:00:00 +0000 Mapping PCI DSS v3.2.1 to the NIST Cybersecurity Framework v1.1 Mon, 01 Jul 2019 12:00:00 +0000 AT A GLANCE: Mapping PCI DSS to the NIST Cybersecurity Framework Mon, 01 Jul 2019 12:00:00 +0000 EXECUTIVE BRIEF: Mapping PCI DSS to the NIST Cybersecurity Framework Mon, 01 Jul 2019 12:00:00 +0000 FAQs for SSF v1.0 Sat, 01 Jun 2019 12:00:00 +0000 PCI Forensic Investigator (PFI) Program Guide Sat, 01 Jun 2019 12:00:00 +0000 PCI Forensic Investigators (PFI) Qualification Requirements Sat, 01 Jun 2019 12:00:00 +0000 QIR Case Study: Innovative Control Systems, Inc. Wed, 01 May 2019 12:00:00 +0000 RFC Process Guide Fri, 01 Feb 2019 12:00:00 +0000 PCI 3DS SDK Attestation of Validation Fri, 01 Feb 2019 12:00:00 +0000 PCI 3DS SDK ROV Reporting Template Fri, 01 Feb 2019 12:00:00 +0000 At-a-Glance: RFC Process Fri, 01 Feb 2019 12:00:00 +0000 FAQs for SSF v1.0 Tue, 01 Jan 2019 12:00:00 +0000 Best Practices for Maintaining PCI DSS Compliance Tue, 01 Jan 2019 12:00:00 +0000 PCI 3DS SDK Summary of Changes Sat, 01 Dec 2018 12:00:00 +0000 PCI 3DS SDK Security Standard Sat, 01 Dec 2018 12:00:00 +0000 Protecting Telephone-based Payment Card Data Thu, 01 Nov 2018 12:00:00 +0000 Glossary of Payment and Information Security Terms Wed, 01 Aug 2018 12:00:00 +0000 Questions to Ask your Vendors Wed, 01 Aug 2018 12:00:00 +0000 PCI 3DS Software Development Kit Program Guide Sun, 01 Jul 2018 12:00:00 +0000 Use of SSL/Early TLS and Impact on ASV Scans Fri, 01 Jun 2018 12:00:00 +0000 Prioritized Approach Tool Fri, 01 Jun 2018 12:00:00 +0000 Use of SSL/Early TLS for POS POI Terminal Connections Fri, 01 Jun 2018 12:00:00 +0000 PCI SSC Cloud Computing Guidelines Sun, 01 Apr 2018 12:00:00 +0000 Payment Data Security Essential: Secure Remote Access Thu, 01 Mar 2018 12:00:00 +0000 Point of Interaction (POI) Modular Evaluation Vendor Questionnaire Thu, 01 Mar 2018 12:00:00 +0000 Payment Data Security Essential: Strong Passwords Thu, 01 Mar 2018 12:00:00 +0000 Payment Data Security Essential: Patching Thu, 01 Mar 2018 12:00:00 +0000 SSL and Early TLS Migration Resource Guide: Preparing for 30 June 2018 Deadline Thu, 01 Feb 2018 12:00:00 +0000 SSL and Early TLS Migration Resource Guide: Preparing for 30 June 2018 Deadline Thu, 01 Feb 2018 12:00:00 +0000 Associate QSA Mentor Manual Template Mon, 01 Jan 2018 12:00:00 +0000 Frequently Asked Questions (FAQs) for Associate Qualified Security Assessor (QSA) Program Mon, 01 Jan 2018 12:00:00 +0000 PCI 3DS Core Attestation of Compliance Fri, 01 Dec 2017 12:00:00 +0000 PCI 3DS Core ROC Reporting Template Fri, 01 Dec 2017 12:00:00 +0000 Connected-to Service Providers Fri, 01 Dec 2017 12:00:00 +0000 3DS Core Qualification Requirements Wed, 01 Nov 2017 12:00:00 +0000 3DS Core Assessor Program Guide Wed, 01 Nov 2017 12:00:00 +0000 3DS Core Qualification Requirements Wed, 01 Nov 2017 12:00:00 +0000 3DS Core Assessor Program Guide Wed, 01 Nov 2017 12:00:00 +0000 PCI 3DS Core Security Standard Sun, 01 Oct 2017 12:00:00 +0000 Mobile Payment Acceptance Security Guidelines for Merchants as End-Users Fri, 01 Sep 2017 12:00:00 +0000 Penetration Testing Guidance Fri, 01 Sep 2017 12:00:00 +0000 Mobile Payment Acceptance Security Guidelines for Developers Fri, 01 Sep 2017 12:00:00 +0000 PCI P2PE Case Study – Bluefin and PriceSmart Tue, 01 Aug 2017 12:00:00 +0000 Cryptographic Key Blocks Information Supplement Thu, 01 Jun 2017 12:00:00 +0000 Guidance for PCI DSS Scoping and Segmentation Mon, 01 May 2017 12:00:00 +0000 Best Practices for Securing E-commerce Sat, 01 Apr 2017 12:00:00 +0000 PCI P2PE Case Study - CardConnect and Northwestern University Wed, 01 Mar 2017 12:00:00 +0000 ASV Qualification Requirements Wed, 01 Feb 2017 12:00:00 +0000 Multi-Factor Authentication Guidance Wed, 01 Feb 2017 12:00:00 +0000 ASV Employee Application Form Wed, 01 Feb 2017 12:00:00 +0000 ASV Company Application Form Wed, 01 Feb 2017 12:00:00 +0000 PCI P2PE Case Study - Bluefin and CHOA Thu, 01 Sep 2016 12:00:00 +0000 FAQs for use with PA-DSS ROV Reporting Template Wed, 01 Jun 2016 12:00:00 +0000 FAQs for PA-DSS Transition Wed, 01 Jun 2016 12:00:00 +0000 HSM Evaluation Vendor Questionnaire Wed, 01 Jun 2016 12:00:00 +0000 PA-DSS Sun, 15 May 2016 12:00:00 +0000 PA-DSS Program Guide Sun, 15 May 2016 12:00:00 +0000 PA-DSS Attestation of Validation Sun, 15 May 2016 12:00:00 +0000 PA-DSS Summary of Changes Sun, 15 May 2016 12:00:00 +0000 PA-DSS ROV Reporting Template Sun, 15 May 2016 12:00:00 +0000 Effective Daily Log Monitoring Sun, 01 May 2016 12:00:00 +0000 Prioritized Approach Summary of Changes Sun, 01 May 2016 12:00:00 +0000 Glossary of Terms, Abbreviations, and Acronyms Thu, 28 Apr 2016 12:00:00 +0000 Migrating from SSL and Early TLS Fri, 01 Apr 2016 12:00:00 +0000 Third-Party Security Assurance Tue, 01 Mar 2016 12:00:00 +0000 TSP AOC Mon, 01 Feb 2016 12:00:00 +0000 TSP ROC Reporting Template Mon, 01 Feb 2016 12:00:00 +0000 P2PE Merchant-Managed Solution AOV Mon, 01 Feb 2016 12:00:00 +0000 P2PE Merchant-Managed Application AOV Mon, 01 Feb 2016 12:00:00 +0000 Bulletin on Migrating from SSL and Early TLS Tue, 01 Dec 2015 12:00:00 +0000 Frequently Asked Questions for PCI TSP Security Requirements Tue, 01 Dec 2015 12:00:00 +0000 PCI TSP Security Requirements Tue, 01 Dec 2015 12:00:00 +0000 Devalue the Data Tue, 01 Sep 2015 12:00:00 +0000 P2PE Application AOV Tue, 01 Sep 2015 12:00:00 +0000 P2PE Solution AOV Tue, 01 Sep 2015 12:00:00 +0000 P2PE Component AOV Tue, 01 Sep 2015 12:00:00 +0000 PCI P2PE Case Study - IPS and Paul Smith Sat, 01 Aug 2015 12:00:00 +0000 Phishing Resource Guide Sat, 01 Aug 2015 12:00:00 +0000 At a Glance: Merchant Guide: Stepping up to EMV Chip with PCI Wed, 01 Jul 2015 12:00:00 +0000 Skimming Resource Guide Wed, 01 Jul 2015 12:00:00 +0000 Increasing Security and Reducing Fraud with EMV Chip and PCI Standards Wed, 01 Jul 2015 12:00:00 +0000 At a Glance : Merchant POS Security Wed, 01 Jul 2015 12:00:00 +0000 PCI P2PE Case Study - Bluefin and Hillman Mon, 01 Jun 2015 12:00:00 +0000 PCI DSS Designated Entities Supplemental Validation Mon, 01 Jun 2015 12:00:00 +0000 Understanding SAQs for PCI DSS Mon, 27 Apr 2015 12:00:00 +0000 Tokenization Product Security Guidelines Wed, 01 Apr 2015 12:00:00 +0000 Card Production Logical Security Requirements Sun, 01 Mar 2015 12:00:00 +0000 Card Production Physical Security Requirements Sun, 01 Mar 2015 12:00:00 +0000 Card Production Summary of Changes from v1.0 to v1.1 Sun, 01 Mar 2015 12:00:00 +0000 Card Production Summary of Changes from v1.0 to v1.1 Sun, 01 Mar 2015 12:00:00 +0000 PIN Security Requirements Modifications: Summary of Changes Mon, 01 Dec 2014 12:00:00 +0000 PIN Security Requirements Mon, 01 Dec 2014 12:00:00 +0000 Terminal Software Security Mon, 01 Dec 2014 12:00:00 +0000 Code of Professional Responsibility Mon, 01 Dec 2014 08:00:00 +0000 Code of Professional Responsibility Mon, 01 Dec 2014 08:00:00 +0000 Code of Professional Responsibility Mon, 01 Dec 2014 08:00:00 +0000 Code of Professional Responsibility Mon, 01 Dec 2014 08:00:00 +0000 Code of Professional Responsibility Mon, 01 Dec 2014 08:00:00 +0000 Code of Professional Responsibility Mon, 01 Dec 2014 08:00:00 +0000 Code of Professional Responsibility Mon, 01 Dec 2014 08:00:00 +0000 Code of Professional Responsibility Mon, 01 Dec 2014 08:00:00 +0000 Code of Professional Responsibility Mon, 01 Dec 2014 08:00:00 +0000 Why PCI DSS v.3.0? Sat, 01 Nov 2014 12:00:00 +0000 Protecting Your Customer's Payment Card Data from Malware Sat, 01 Nov 2014 12:00:00 +0000 Best Practices for Implementing a Security Awareness Program Wed, 01 Oct 2014 12:00:00 +0000 Skimming Prevention: Overview of Best Practices for Merchants Mon, 01 Sep 2014 12:00:00 +0000 Skimming Prevention: Best Practices for Merchants Mon, 01 Sep 2014 12:00:00 +0000 P2PE Interim Assessment for Solutions Fri, 01 Aug 2014 12:00:00 +0000 Accepting Mobile Payments with a Smartphone or Tablet Fri, 01 Aug 2014 12:00:00 +0000 ROV Reporting Template for use with PA-DSS v3.0 - Summary of Changes Tue, 01 Jul 2014 12:00:00 +0000 P2PE Technical FAQs Tue, 01 Jul 2014 12:00:00 +0000 ROC Reporting Template for use with PCI DSS v3.0 - Summary of Changes Tue, 01 Jul 2014 12:00:00 +0000 Windows XP Support is Ending (Print Version) Sat, 01 Mar 2014 12:00:00 +0000 Windows XP Support is Ending Sat, 01 Mar 2014 12:00:00 +0000 P2PE Designated Changes to Solutions Sat, 01 Mar 2014 12:00:00 +0000 PA-QSA Qualification Requirements Mon, 03 Feb 2014 08:00:00 +0000 Increasing Security and Reducing Fraud with EMV Chip and PCI Standards (Print Version) Sat, 01 Feb 2014 12:00:00 +0000 It's time to change your password Wed, 01 Jan 2014 12:00:00 +0000 It's time to change your password (Print Version) Wed, 01 Jan 2014 12:00:00 +0000 Stay Smart on Protecting Against Card Fraud! (Print Version) Wed, 01 Jan 2014 12:00:00 +0000 Stay Smart on Protecting Against Card Fraud! Wed, 01 Jan 2014 12:00:00 +0000 PCI DSS and PA-DSS Version 3.0 Change Highlights Thu, 01 Aug 2013 12:00:00 +0000 P2PE Hardware/Hybrid Solution Requirements and Testing Procedures Mon, 01 Jul 2013 12:00:00 +0000 P2PE Hardware/Hardware Solution Requirements and Testing Procedures Sat, 01 Jun 2013 12:00:00 +0000 General Frequently Asked Questions Wed, 01 May 2013 12:00:00 +0000 P2PE QSA Qualification Requirements Fri, 01 Feb 2013 12:00:00 +0000 Mobile Payment Acceptance Security Guidelines for Merchants v1.0 Fri, 01 Feb 2013 12:00:00 +0000 PCI DSS 2.0 eCommerce Guidelines Tue, 01 Jan 2013 12:00:00 +0000 ATM Security Guidelines Tue, 01 Jan 2013 12:00:00 +0000 PCI DSS 2.0 Risk Assessment Guidelines Thu, 01 Nov 2012 12:00:00 +0000 Summary of PCI DSS and PA-DSS Feedback 2012 Sat, 01 Sep 2012 12:00:00 +0000 P2PE Summary of Changes from Initial Release Sun, 01 Apr 2012 12:00:00 +0000 FAQs for use with PA-DSS ROV Reporting Instructions Thu, 01 Mar 2012 12:00:00 +0000 Frequently Asked Questions for Transition Sun, 01 Jan 2012 12:00:00 +0000 FAQs for use with ROC Reporting Instructions for PCI DSS Thu, 01 Sep 2011 12:00:00 +0000 QSA and PA-QSA Revocation - Frequently Asked Questions Thu, 04 Aug 2011 12:00:00 +0000 PCI DSS Tokenization Guidelines Mon, 01 Aug 2011 12:00:00 +0000 PCI DSS Wireless Guidelines Mon, 01 Aug 2011 12:00:00 +0000 PA-DSS and Mobile Applications FAQs Wed, 22 Jun 2011 12:00:00 +0000 Which Applications are Eligible for PA-DSS Validation Wed, 01 Jun 2011 12:00:00 +0000 PCI DSS Virtualization Guidelines Wed, 01 Jun 2011 12:00:00 +0000 Validation Requirements for Approved Scanning Vendors (ASVs) Mon, 28 Feb 2011 12:00:00 +0000 PCI ASV Compliance Test Agreement Mon, 28 Feb 2011 12:00:00 +0000 Navigating the PCI DSS Thu, 28 Oct 2010 12:00:00 +0000 PCI DSS Applicability in an EMV Environment Fri, 01 Oct 2010 12:00:00 +0000 PCI Data Storage Do's and Don'ts Fri, 01 Oct 2010 12:00:00 +0000 Ten Common Myths of PCI DSS Fri, 01 Oct 2010 12:00:00 +0000 Initial Roadmap: Point-to-Point Encryption Technology and PCI DSS Compliance Fri, 01 Oct 2010 12:00:00 +0000 Payment Card Industry Security Standards Overview Fri, 01 Oct 2010 12:00:00 +0000 Validation Requirements for Internal Security Assessors (ISA) Wed, 01 Sep 2010 12:00:00 +0000 PTS PED & EPP Technical FAQs Wed, 01 Sep 2010 12:00:00 +0000 Lifecycle for Changes to the PCI DSS and PA-DSS Tue, 01 Jun 2010 12:00:00 +0000 Requirement 6.6 Code Reviews and Application Firewalls Clarified Sat, 01 Aug 2009 12:00:00 +0000 Requirement 11.3 Penetration Testing Sat, 01 Aug 2009 12:00:00 +0000 Overview of the PCI DSS Wireless Guideline Wed, 01 Jul 2009 12:00:00 +0000 Unattended Payment Terminal (UPT) Security Requirements Wed, 01 Apr 2009 12:00:00 +0000 Unattended Payment Terminals (UPT) Wed, 01 Apr 2009 07:00:00 +0000 Supplement for Principal-Associate Qualified Security Assessors Sun, 04 Jan 2009 08:00:00 +0000 PCI DSS Validation Requirements for Approved Scanning Vendors (ASVs) Sat, 03 Jan 2009 12:00:00 +0000 POS PIN Entry Device Form Thu, 01 Jan 2009 12:00:00 +0000 Encrypting PIN Pad (EPP) Thu, 01 Jan 2009 08:00:00 +0000 POS PIN Entry Device (PED) Thu, 01 Jan 2009 08:00:00 +0000 POS PIN Entry Device (PED) Questionnaire Sun, 01 Jul 2007 12:00:00 +0000 POS PIN Entry Device (PED) Questionnaire Sun, 01 Jul 2007 12:00:00 +0000 POS PIN Entry Device Security Requirements Wed, 01 Nov 2006 12:00:00 +0000