Today the PCI Standards Council released the Payment Application – Data Security Standard. There are several documents including the program guide, an FAQ, Summary of Changes from Visa’s PABP, and the Validation Requirements.
For those new to the PCI game, focus on the Validation Procedures document- this is what an application will be audited against.
Reminder: a PA-DSS applications must be both:
- Deployed and configured in a compliant manner, and
- Deployed in a PCI-DSS compliant environment.
Links:
PA-DSS page at PCI Security Standards Council site
