Payment Application Data Security Standard

E193742

The Payment Application Data Security Standard (PA-DSS) is a set of security requirements designed to help software vendors develop payment applications that securely handle cardholder data and support PCI DSS compliance.

All labels observed (1)

Label Occurrences
Payment Application Data Security Standard canonical 4

How this entity was disambiguated

Statements (48)

Predicate Object
instanceOf payment card industry standard
security standard
abbreviation PA-DSS
appliesTo payment applications that store, process, or transmit cardholder data
third-party payment application vendors
developedBy PCI Security Standards Council
domain cardholder data security
payment applications
endOfLifeDate 2022-10-28
excludes hardware-only payment terminals
in-house developed payment applications not sold to third parties
focusesOn logging and auditing of payment application activity
minimizing storage of sensitive authentication data
secure authentication and access control in payment applications
secure handling of cardholder data
secure remote access to payment applications
vulnerability management for payment applications
fullName Payment Application Data Security Standard self-link
geographicalScope international
industry payment card industry
publisher PCI Security Standards Council
purpose to ensure payment applications support PCI DSS compliance
to help software vendors develop secure payment applications
to reduce the risk of cardholder data compromise in payment applications
relatedTo PCI DSS
surface form: PCI Data Security Standard
requires encryption of cardholder data over open networks
implementation of strong access control measures in payment applications
logging of security-relevant events in payment applications
protection of stored cardholder data
secure development practices for payment applications
testing of payment applications for security vulnerabilities
requiresValidationBy PCI Security Standards Council
surface form: PCI Security Standards Council Qualified Security Assessor
retirementAnnouncedBy PCI Security Standards Council
retirementAnnouncementYear 2019
status superseded
supersededBy PCI Secure Software Lifecycle Standard
PCI Secure Software Standard
PCI Software Security Framework
supports PCI DSS compliance for merchants and service providers
targets software-based payment applications
validationResult listing on PCI SSC List of Validated Payment Applications
version PA-DSS v1.0
PA-DSS
surface form: PA-DSS v1.1

PA-DSS
surface form: PA-DSS v1.2

PA-DSS
surface form: PA-DSS v2.0

PA-DSS v3.0
PA-DSS
surface form: PA-DSS v3.1

PA-DSS
surface form: PA-DSS v3.2

How these facts were elicited

Referenced by (4)

Full triples — surface form annotated when it differs from this entity's canonical label.

PCI Security Standards Council developsStandard Payment Application Data Security Standard
Payment Application Data Security Standard fullName Payment Application Data Security Standard self-link
PA-DSS fullName Payment Application Data Security Standard
PA-DSS abbreviationOf Payment Application Data Security Standard