Discuss: The Payment Application Data Security Standard (PA DSS)
by Sangita Pakala, GCIH
Discussion is open —
there are 3 reader comments.
Add yours.
1. shirambler | 19 Aug 2008 8:27 AM
I read your article ,is good for my works. thanks
2. sid | 16 Sep 2008 3:32 PM
great article.. very well done, however, what about encrypting/decrypting of credit card details?
Sid
3. Don Schroeder | 19 Sep 2008 12:24 AM
There is an alternative for software vendors that are in scope of PA-DSS because they transmit, store, or process cardholder data. They can get out of scope. Element Payment Services, Inc. (www.elementps.com) has a product called Hosted Payments that does just that. It allows software vendors to maintain all the same benefits of integrated payments without the risk and expense associated with handling cardholder data and becoming PA-DSS compliance.