News - News - National FinTech Evaluation Center (Bank Card Testing Center)

News

Current location:Home - News

News

PCI DSS V4.0 Now Substitutes V3.2.1

Date: Apr-18-2024

Since March 31, 2024, PCI Data Security Standards (DSS) V3.2.1 has been replaced by V4.0 which is the only effective DSS version now.

BCTC, as the QSA, ASV and SSF Assessor (formally PA-QSA) qualified by PCI SSC, is capable of providing “one-stop” assessment service to commercial banks, third payment service providers and merchants based on the rich experiences in relevant fields.

* About PCI DSS

PCI DSS is a significant standard to protect the security of cardholders data. It is applicable to all entities that receive, process, store and transmit payment card data.

PCI DSS V4.0 was initially released in March 2022. 63 revisions were made from V3.2.1. Entities are required to complete all remediation against 13 revisions which are mandatory since this substitution on March 31, 2024.

More information can be found on:

https://www.pcisecuritystandards.org

* Major Changes in PCI DSS V4.0

1. Continuously updated security requirements following the payment development, such as:

l Extended Multiple Factors Authentication (MFA) requirement

l Updated password complexity and changing frequency requirement

l Added phishing-attack protection requirement

2. Continuously improved security requirements, such as:

l Clarification on personal role and responsibility related to each security requirement

l Added best practices to help entities understand how to implement and maintain security measures

l Increased readability of assessment report

3. New methods to help entities reach security targets, such as:

l Group/shared/general account status

l “Target risk analysis” to define frequency of some actions

l “Customized approach” to offer entities more options

4. Enhanced validation methods and procedures, such as:

l Information in ROC or SAQ to be in accordance with AOC

* More Service Options that BCTC offers

l PCI PIN, SPoC/CPoC/MPoC, PTS for payment acceptance

l PCI CPSA for cardholder side

l PCI QSA, ASV, SSF, 3DS for data security

Open for any query approaches with contact below:

Email: global.services@bctest.com

Phone: +65 93879186 / +65 84372143

Follow us on:

https://en.bctest.com

linkedin.com/company/bctest

Previous：Local Policies and Joint Actions Released in Many Places to Keep Improving Payment Convenience Next：BCTC’s Evaluation Service to Enhance Security of ATM

Top

About Us
About Us History of Development Honors & Qualifications Clients
Fast Navigation
> Services > FinTech > News
Contact Us
National FinTech Evaluation Center (Bank Card Testing Center) National Financial IC Card Security Test Center Bank Card Test Center Southeast Asia Branch Address: 8 Marina Boulevard, #11-05, Marina Bay Financial Centre, Singapore, 018981 Email: global.services@bctest.com
Follow Us
Linkedin: linkedin.com/company/bctest Twitter & Facebook: BCTCnews

Links:

People's Bank of China China UnionPay P&M Tech

About us Join us

BCTC 京ICP备05010590号