SSL/Early TLS: Navigating Payment Application Validations

 

The removal of Secure Sockets Layer (SSL)/ early Transport Layer Security (TLS) as examples of security protocols in the PCI Data Security Standard (PCI DSS) has prompted inquiries from payment application vendors on how this impacts Payment Application Data Security Standard (PA-DSS) validations. Here we’ll take a lookat a couple of these questions and an outline of important considerations when navigating SSL/early TLS migration and payment application validation.  

About PCI Blog 870 Articles
PCI Blog is the most trusted PCI Compliance and IT Security blog on the web. Authored by industry experts within the payments and IT security industries, PCI Blog provides insight on the complex world behind modern compliance and security standards. As a wholly independent source of news within the payments industry, PCI Blog focuses on the ever-changing responsibilities of merchants who accept credit cards. PCI Blog also provides reviews on PCI compliance tools and enterprise security solutions to offer a fair, independent critique of product offerings within the payments industry.