HTN: Hen's Teeth Network Hen’s Teeth Network Blog

E-Commerce Software PCI PA-DSS Validation Summary

Filed under: This & That — Art Zemon on August 3, 2009

This page contains a brief list of popular e-commerce applications with PCI PA-DSS validation status. This is just a hand-maintained summary. The official List of Validated Payment Applications is on the PCI Security Standards Council web site.

Please send updates and corrections to art@hens-teeth.net.

* From the Payment Application Data Security Standard Frequently Asked Questions, downloadable from https://www.pcisecuritystandards.org/pdfs/pci_pa-dss_faqs.pdf

Q. Will the PCI SSC accept applications that have been previously validated under the existing Visa PABP program?
A. PCI SSC will recognize PABP validated payment applications and list them with the appropriate PABP version that they were validated against. For payment applications validated against pre-PABP version 1.3, they must undergo a PA-DSS assessment within twelve (12) months after the initial publication of the PCI SSC list otherwise they will expire and will no longer be accepted for new deployments. For payment applications validated against PABP version 1.3, they must undergo a PA-DSS assessment within eighteen (18) months after the initial publication of the PCI SSC list. For payment applications validated against PABP version 1.4, they must undergo a PA-DSS assessment within twenty-four (24) months after the initial publication of the PCI SSC list. Please refer to the table in the Grandfathering PABP Applications section of the PA-DSS Program Guide for more details

Contact Us | Legal
© Copyright 2001-2009 Hen's Teeth Network, Inc. All Rights Reserved.