Document Comparison
SPoC_Technical_FAQs_v1.1_May_2018.pdf
→
SPoC_Technical_FAQs_v1.2_June_2018.pdf
94% similar
7 → 7
Pages
2565 → 2855
Words
1
Content Changes
Content Changes
1 content change.
Added
p. 5
Q 14 Are there any restrictions to the specific form factors for COTS devices and SCRPs which can be approved under the PCI SPoC program? A No, the SPoC requirements do not dictate any specific form factor for the COTS device, the SCRP or the combination thereof for inclusion in an approved and validated SPoC Solution.
SPoC Security Requirement 3.6
Q1 SPoC Security Requirements 3.6.1 and 5.1.2 state that if the Back-End Monitoring system resides in the Cardholder Data Environment, then PCI DSS and Appendix A3: Designated Entities Supplemental Validation (DESV) will apply. Does a SPoC Solution Provider have to be fully compliant with DESV when submitting a SPoC Solution for initial validation? A If the Solution Provider cannot meet DESV requirements at the point of an initial SPoC solution validation, the Solution Provider must provide, to the SPoC lab, an action plan demonstrating that work is in progress for requirements to …
SPoC Security Requirement 3.6
Q1 SPoC Security Requirements 3.6.1 and 5.1.2 state that if the Back-End Monitoring system resides in the Cardholder Data Environment, then PCI DSS and Appendix A3: Designated Entities Supplemental Validation (DESV) will apply. Does a SPoC Solution Provider have to be fully compliant with DESV when submitting a SPoC Solution for initial validation? A If the Solution Provider cannot meet DESV requirements at the point of an initial SPoC solution validation, the Solution Provider must provide, to the SPoC lab, an action plan demonstrating that work is in progress for requirements to …