Document Comparison
POI_Security_Requirements_v6_Summary_of_Changes_6-0_to_6-1.pdf
→
POI_Security_Requirements_v6_Summary_of%20Changes_6-1_to_6-2.pdf
39% similar
4 → 4
Pages
604 → 578
Words
6
Content Changes
Content Changes
6 content changes. 3 administrative changes (dates, page numbers) hidden.
Added
p. 3
Requirement DTR A1 Made reference to PIN CVM Application more generic. Additional Guidance DTR A10 Specified that SCRPs must not contain a hybrid card reader. Requirement DTR B7 Made reference to PIN CVM Application more generic. Additional Guidance DTR B9 Modified ANSI references.
Made reference to PIN CVM Application more generic.
Clarified on the usage of multiple experts to determine key block equivalence of proprietary solutions.
Additional Guidance DTR B11 Made reference to PIN CVM Application more generic.
Clarified that SCRPS shall perform PIN translation from PIN blocks received using a tokenized PAN to encryption using a real PAN to send to the host.
Additional Guidance DTR B20 Added test step to reflect existing requirement in PTS Device Testing and Approval Program Guide for vendor to define and document in the Security Policy all hardware and firmware options.
Modified test step to prescribe the use of actual pictures of the device in the security policy.
Added test …
Made reference to PIN CVM Application more generic.
Clarified on the usage of multiple experts to determine key block equivalence of proprietary solutions.
Additional Guidance DTR B11 Made reference to PIN CVM Application more generic.
Clarified that SCRPS shall perform PIN translation from PIN blocks received using a tokenized PAN to encryption using a real PAN to send to the host.
Additional Guidance DTR B20 Added test step to reflect existing requirement in PTS Device Testing and Approval Program Guide for vendor to define and document in the Security Policy all hardware and firmware options.
Modified test step to prescribe the use of actual pictures of the device in the security policy.
Added test …
Modified
p. 1
Payment Card Industry (PCI) PIN Transaction Security (PTS) Point-of-Interaction (POI) Summary of Requirements Changes from Version 6.0 to 6.1
Payment Card Industry (PCI) PIN Transaction Security (PTS) Point-of-Interaction (POI) Summary of Requirements Changes from Version 6.1 to 6.2
Modified
p. 2
Table 1: Change Types Change Type Definition Additional Explanation, definition, and/or instruction to increase understanding or provide further information or guidance on a particular topic.
Table 1: Change Types Change Type Definition Additional Guidance Explanation, definition, and/or instruction to increase understanding or provide further information or guidance on a particular topic.
Removed
p. 3
Requirement SR 12 Reference to D14 as alternate. Additional SR D13 Reference to D14 as alternate. Additional SR D14 Added requirement for unauthenticated wireless communications.
Requirement DTR A8 Added additional test steps for protection of display signals. Requirement DTR A10 Added additional test step for contactless readers. Requirement DTR A11 Updated criteria on PAN truncation/encryption.
Specified in guidance and test step that manual PAN entry functions implemented by the POI firmware never display more than one clear-text PAN digit at a time.
Requirement DTR B2 Clarified that the displayed firmware version number(s) reflects all firmware the device is currently able to execute.
Additional DTR B5 Specified that the loading of all private or secret keys can be performed without using plaintext key injection (as required by PCI PIN).
Requirement DTR B9 Updated check value criteria.
Added explicit statement for devices needing to support AES KEKs.
Additional DTR B10 Updated criteria on PAN truncation/encryption Requirement
Requirement DTR A8 Added additional test steps for protection of display signals. Requirement DTR A10 Added additional test step for contactless readers. Requirement DTR A11 Updated criteria on PAN truncation/encryption.
Specified in guidance and test step that manual PAN entry functions implemented by the POI firmware never display more than one clear-text PAN digit at a time.
Requirement DTR B2 Clarified that the displayed firmware version number(s) reflects all firmware the device is currently able to execute.
Additional DTR B5 Specified that the loading of all private or secret keys can be performed without using plaintext key injection (as required by PCI PIN).
Requirement DTR B9 Updated check value criteria.
Added explicit statement for devices needing to support AES KEKs.
Additional DTR B10 Updated criteria on PAN truncation/encryption Requirement
Modified
p. 3
Table 2: Summary of Changes Document and Requirements Change Type SR General Updated Related Publications. Additional SR B16.2 Added that security guidance for application developers must specify that SRED functions, where provided, are correctly implemented.
Table 2: Summary of Changes Document and Requirements Change Type SR General Updated Related Publications. Additional Guidance SR B26 Modified wording to address both SPoC and MPoC and to clarify the enablement token impact.
Removed
p. 4
Requirement DTR B20 Updated B20.9, B20.28 and B20.31. Requirement DTR B23 Added guidance and test step for PAN truncation. Requirement DTR D12 Reference to D14 as alternate. Additional DTR D13 Reference to D14 as alternate. Additional DTR D14 Added criteria for unauthenticated wireless communications. Requirement DTRs E3, E5, E6, E7, E8, E9, F1, F2, F3, F4, F5, F7, Moved criteria that only applied on a site review to always apply. Requirement DTR F7 Added test step for lab to verify existing requirement for the device model name and hardware version to be retrievable by a query.
Additional DTR Appendix E Updated to include EdDSA. Additional DTR Appendix G Updated throughout. Additional
Additional DTR Appendix E Updated to include EdDSA. Additional DTR Appendix G Updated throughout. Additional