What is PCI PIN?
In this new article in the What is it? series, a brief introduction will be made to the Payment Card Industry (PCI) PIN Security (PCI PIN) standard, focused on the protection of the personal identification number (PIN) in face-to-face transactions. Introduction The standard...
Important dates
Important dates: October 1, 2023: The Visa PIN program has been withdrawn. January 1, 2024: Change the process of loading keys by components in PCI PIN March 31, 2024: The PCI DSS v3.2.1 standard will be withdrawn and the version...
Brief history of payment cards
The use of debit and credit cards are part of our daily financial life. According to the Bank of Spain, there are currently approximately 85 million payment cards (plastics) in circulation in Spain, more than 60,000 ATMs...
The Ultimate Guide to Cryptographic Key Blocks
With the entry into force of the PCI PIN v2.0 standard in 2014, all encrypted symmetric keys (cryptograms) must be handled in structures called key blocks, which allow to protect in a standardized way the integrity of said cryptographic keys.
CDE General Inventory Template
Many of us have already begun to analyze and even work on the adaptations and new requirements for the transition process from PCI DSS version 3.2.1 to version 4.0. In the eagerness to support the...
Analysis of PCI DSS v4.0 – Part VII: Requirement 12
This penultimate article in the series ‘PCI DSS analysis v4.0’ presents an analysis of changes to requirement 12 – part of group 6 ‘Maintain an Information Security Policy’ – in version 4.0 of the PCI DSS standard....
China UnionPay is now part of PCI SSC
From October 2022, the China UnionPay (UP) logo will be present in the PCI SSC standards compliance reports, along with the logos of the five founding entities. China UnionPay (or simply "UnionPay" or...
Analysis of PCI DSS v4.0 Part VI: Requirements 10 and 11
In this sixth installment of the series ‘PCI DSS analysis v4.0’, requirements 10 and 11 of the PCI DSS standard v4.0 will be analysed. These requirements are part of group 5. Regularly Monitor and Test Networks, which continues with the...
Changes in Hispanic PCI
With more than 250 articles published and an average of 10,000 unique visitors per month, PCI Hispano has become a reference in the area of security of means of payment and regulatory compliance in Latin America. However, after that...
Analysis of PCI DSS v4.0 – Part V: Requirements 7, 8 and 9
In this fifth installment of the series ‘PCI DSS Analysis v4.0’, the changes applied to requirements 7, 8 and 9 of the standard in its new version (4.0) will be analysed. These requirements – which are part of Group 4 ...
Analysis of PCI DSS v4.0 – Part IV: Requirements 5 and 6
This fourth installment of the ‘PCI DSS 4.0 Analysis’ series presents a review of the changes in requirements 5 and 6 of the PCI DSS standard that occurred between versions 3.2.1 and 4.0. These two requirements are...
Analysis of PCI DSS v4.0 – Part III: Requirements 3 and 4
Continuing with the analysis to version 4.0 of the PCI DSS standard, in this third part of the series the requirements 3 and 4 that are part of the group «Protect Account Data» will be analyzed, focused on the protection of...
Analysis of PCI DSS v4.0 – Part II: Requirements 1 and 2
In this second part of the series ‘Analysis of PCI DSS v4.0’, a review will be carried out of requirements 1 and 2 of the standard, which are part of the ‘Build and Maintain a Secure Network and Systems’ group, aimed at controlling...
Analysis of PCI DSS v4.0 – Part I: Introduction
In this first part of this series "PCI DSS Analysis v4.0" we will analyze the history behind version 4.0 of the standard, the variables that influenced its change and the associated review and publication process. Then...
EN 
ES