Should a PA DSS policy exception be used to document a security - ProProfs Discuss
Advertisement

Should a PA-DSS policy exception be used to document a security breach when card data is stolen?

Asked by Ajbsoftware, Last updated: May 29, 2022

+ Answer
Request
Question menu
Vote up Vote down

3 Answers

F. Lopez

F. Lopez

F. Lopez
F. Lopez

Answered Sep 17, 2019

The correct answer to this question is False. PA-DSS stands for Payment Application Data Security Standard. It was created by the Payment Card Industry Security Standards Council and originally known as the payment application best practices. It is known as a global security model, which provides guidelines to protect the date of a payment card.

It reduces the threat of identity theft and fraud to occur to consumers. The standards also help in preventing data from being breached. There are 12 requirements of the standards and over 200 other requirements. The 12 are broad, and the over 200 more are line items.

upvote downvote
Reply 

Barry Mclean

Barry Mclean

Ask me anything!

Barry Mclean
Barry Mclean, Sales Manager, MBA, Ewa

Answered Jan 03, 2019

The Payment Card Industry Information Security Standard is a set of industry guidelines designed to protect payment card data. The policy is intended to create an additional level of protection for consumers and reduce the risk of data.

It creates an additional level of protection for consumers and reduces the risk of data breaches. The standards are comprised of 12 broad requirements and collectively, more than 200 line item requirements.

The Payment Application Data Security Standard, formerly referred to as the payment application best practices, is the global security model created by the Payment Card Industry Security Standards Council PA DSS.

upvote downvote
Reply 

John Smith

John Smith

John Smith
John Smith

Answered Aug 03, 2017

False

A payment vendor PA-DSS policy exception should be used when a customer can not meet PA-DSS requirements due to business, operational or technical constraints. For example, disable PAN encryption at the PIN PAD to perform transaction troubleshooting. A policy exception is used to state to the customer, that a risk of a card breach is increased, not that a breach has already occured.
upvote downvote
Reply 

Advertisement
Advertisement
Search for Google images Google Image Icon
Select a recommended image
Upload from your computer Loader
Image Preview
Search for Google images Google Image Icon
Select a recommended image
Upload from your computer Loader
Image Preview
Search for Google images Google Image Icon
Select a recommended image
Upload from your computer Loader

Email Sent
We have sent an email to your address "" with instructions to reset your password.