PIN Transaction Security Devices With Expired Approvals
PIN Transaction Security (PTS) devices are used by merchants, processors, financial institutions, payment card production and provisioning vendors and others for the protection of sensitive data, including the capture of payment card data, at the point-of-interaction (POI) and validating approval of its use for a transaction. The Council, via PCI Recognized Laboratories, validates the conformance of PTS devices to the PCI PTS standards and provides a list of approved Hardware Security Modules and POI devices. The Council urges merchants to use approved PTS devices in their payment environments. Some payment brands require the use of approved PTS devices; entities should contact their acquirer or the payment brands directly for information about such requirements.
Please review the legal conditions and restrictions regarding PCI PTS approval contained in the PTS Device Testing and Approval Program Guide.
Do you need guidance on device compliance?
PCI Recognized Laboratories are organizations that have been approved by the Council to conduct security evaluations on a range of product types, both hardware and software. For device vendors and manufacturers, the labs perform device testing to validate compliance to the PIN Transaction Security requirements and, to facilitate the evaluation process prior to actual testing, offer guidance on device design and compliance assessments.
Find a PCI Recognized LabFind a PIN Transaction Security Device
When a firmware version reaches the end of the expiration year the expiration date in the approval listing will change color to Orange; when the firmware version has gone past the window for re-evaluation and approval, the expiration year will change color to Red. Details can be found in the Testing and Approval Program Guide.
