PCI Releases PIN Device Approval Listings

WAKEFIELD, Mass. -- The PCI Security Standards Council, a global, open industry standards body providing management of the Payment Card Industry Data Security Standard (DSS), PCI PIN Entry Device (PED) Security Requirements and the Payment Application Data Security Standard (PA-DSS), today announced that PCI PED equipment approval listings and security requirements documents are available on the Council’s website at https://www.pcisecuritystandards.org/pin/. With today’s announcement, the PCI SSC has finalized this important phase of its mission to assume responsibility as a single source of information and requirements for PED. PED was previously jointly administered by JCB, MasterCard Worldwide and Visa, Inc.

The PED Security Requirements are designed to ensure the security of personal identification number (PIN)-based transactions globally and apply to devices that accept PIN entry for all PIN-based transactions. The Council has not only taken over responsibility of the PED Security Requirements, but also now maintains the listing of all approved devices and supporting documents for device makers seeking to ensure their equipment meets this key standard. It also provides merchants and service providers with a single source of information on PED equipment that can be used immediately.

“The Council has now completed this important step in improving security for cardholder data by making available the PED Security Requirements, list of approved devices and all supporting documents. This will ease the burden on merchants, vendors and service providers,” said Bob Russo, General Manager, PCI Security Standards Council. “We are simplifying processes and have removed conflicting requirements to ensure a level playing field for the device marketplace.”

PCI Security Standards Council LLC