PA-DSS

E193743

PA-DSS (Payment Application Data Security Standard) is a security standard that defines requirements for software vendors to ensure their payment applications securely handle cardholder data and support PCI DSS compliance.

All labels observed (7)

Label Occurrences
PA-DSS canonical 3
PA-DSS v1.1 1
PA-DSS v1.2 1

How this entity was disambiguated

Statements (49)

Predicate Object
instanceOf PCI SSC standard
information security standard
payment application security standard
abbreviationOf Payment Application Data Security Standard
appliesTo payment application integrators
payment application software vendors
definedBy PCI Security Standards Council
domain financial services security
payment card security
focusesOn secure authentication data handling
secure handling of cardholder data
secure storage of cardholder data
secure transmission of cardholder data
fullName Payment Application Data Security Standard
geographicScope global
governs payment applications
includesRequirement do not retain CVV2 or CVC2 data
do not retain PIN or PIN block data
do not retain full magnetic stripe data
documentation for secure implementation by integrators and merchants
encrypt cardholder data over open public networks
logging and audit trails in payment applications
protect stored cardholder data
secure authentication and access control
secure remote access to payment applications
secure software development practices
vulnerability management for payment applications
notApplicableTo in-house developed payment applications used only by a single merchant
primaryGoal to help ensure that payment applications do not store prohibited cardholder data
to help protect cardholder data in payment applications
to support PCI DSS compliance for merchants
publisher PCI Security Standards Council
relatedTo PCI DSS
replacedBy PCI Secure Software Lifecycle Standard
PCI Secure Software Lifecycle Standard
surface form: PCI Secure Software Standard

PCI Software Security Framework
retirementAnnouncedBy PCI Security Standards Council
scope third-party payment application products sold to multiple customers
status retired
supports PCI DSS compliance
usedBy payment application assessors
payment application vendors worldwide
version 1.0
1.1
1.2
2.0
3.0
3.1
3.2

How these facts were elicited

Referenced by (9)

Full triples — surface form annotated when it differs from this entity's canonical label.

PCI DSS relatedStandard PA-DSS
PCI DSS relatedStandard PA-DSS
this entity surface form: PCI SSF
Payment Application Data Security Standard version PA-DSS
this entity surface form: PA-DSS v1.1
Payment Application Data Security Standard version PA-DSS
this entity surface form: PA-DSS v1.2
Payment Application Data Security Standard version PA-DSS
this entity surface form: PA-DSS v2.0
Payment Application Data Security Standard version PA-DSS
this entity surface form: PA-DSS v3.1
Payment Application Data Security Standard version PA-DSS
this entity surface form: PA-DSS v3.2
PTS relatedTo PA-DSS