CHAPTER 12: THE PAYMENT APPLICATION DATA SECURITY STANDARD (PA-DSS)
The PA-DSS is the PCI SSC-managed programme that focuses on payment applications, such as shopping carts, payment gateways, and so on. This programme was previously run by Visa Inc. and was known as Payment Application Best Practices (PABP). Increasingly, criminals are targeting vulnerabilities in payment applications to steal payment card data, and some users may unknowingly have sensitive card data stored on their systems by software. The PA-DSS is therefore meant to help software vendors and others develop secure payment applications that do not store prohibited data, such as full magnetic stripes, CVV2 or PIN data, and to ensure their payment applications support compliance ...
Get PCI DSS: A Pocket Guide 5th edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
