The PCI Secure Software Standard details the requirements that Payment Software must meet to be validated against the PCI Secure Software Standard and qualified by PCI SSC for Program purposes (“Validated Payment Software” or “Listed” Payment Software). Validation helps assure that …

2024年10月15日 · The PCI Security Standards Council operates programs to train, test, and qualify organizations and individuals who assess and validate compliance, to help merchants successfully implement PCI standards and solutions.

2022年12月7日 · Version 1.2 of the PCI Secure Software Standard introduces the Web Software Module, a set of supplemental security requirements to address the most common security issues related to the use of internet-accessible payment technologies.

The PCI Secure Software Standard defines security requirements for software vendors and developers to ensure that payment software is securely designed and managed, and the integrity of payment transactions and the confidentiality of payment data that is stored, processed, or transmitted in association with payment transactions is protected.

Compliance of a given Product or Solution with a Standard is determined SOLELY by the applicable PCI SSC-qualified assessor or laboratory (each an “Assessor”), based upon that Assessor’s assessment or evaluation of the Product or Solution, as documented in a corresponding validation report prepared by that Assessor.

The PCI Secure Software Standard details the requirements that Payment Software must meet in order to be validated against the PCI Secure Software Standard and qualified by PCI SSC for Program purposes (“Validated Payment Software” or “Listed” Payment Software).

The PCI Secure Software Lifecycle (SLC) Standard is part of the PCI Software Security Framework and helps software vendors to ensure that security is designed and integrated at each stage of the software lifecycle.

PCI Security Standards are technical and operational requirements set by the PCI Security Standards Council (PCI SSC) to protect cardholder data. The standards apply to all entities that store, process or transmit cardholder data – with requirements for software developers and manufacturers of applications and devices used in those transactions.

If you are a merchant of any size accepting credit cards, you must be in compliance with PCI Security Council standards. This site provides: credit card data security standards documents, PCIcompliant software and hardware, qualified security assessors, technical support, merchant guides and more.

Learn more about PCI SSC’s Training & Qualification programs, class schedules, registration information, corporate group training and knowledge training. Training & Qualification Overview 3DS Assessor Training