PCI PIN Security Requirements
GPTKB entity
Statements (48)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
crypt
|
| gptkbp:access |
publicly available
|
| gptkbp:appliesTo |
financial institutions
payment processors merchants handling PIN data |
| gptkbp:compatibleWith |
third-party service providers
card issuers ATM operators POS terminal operators |
| gptkbp:covers |
PIN key management
PIN processing PIN storage PIN transmission |
| gptkbp:documentType |
gptkb:technical_specification
|
| gptkbp:enforcedBy |
payment networks
acquiring banks |
| gptkbp:focusesOn |
PIN security
|
| gptkbp:hasVersion |
Version 3.1
|
| https://www.w3.org/2000/01/rdf-schema#label |
PCI PIN Security Requirements
|
| gptkbp:language |
English
|
| gptkbp:latestReleaseVersion |
2023
|
| gptkbp:objective |
ensure secure PIN processing
prevent unauthorized PIN disclosure protect PIN confidentiality |
| gptkbp:publishedBy |
gptkb:PCI_Security_Standards_Council
|
| gptkbp:relatedTo |
gptkb:PCI_DSS
gptkb:PCI_PTS gptkb:ISO_9564 |
| gptkbp:requires |
incident response procedures
dual control and split knowledge for key management PIN block formatting PIN translation controls PIN verification controls auditing and monitoring encryption of PINs key injection facility security key loading procedures key management controls logical security controls periodic security reviews physical security controls secure PIN entry devices tamper-evident packaging for keys use of secure cryptographic devices |
| gptkbp:scope |
global
|
| gptkbp:website |
https://www.pcisecuritystandards.org
|
| gptkbp:bfsParent |
gptkb:PCI_DSS
|
| gptkbp:bfsLayer |
4
|