Secure & Compliant
Throughout the processing of online and offline payment card transactions at ATMs and POS terminals, the management, processing and transmission of personal identification number (PIN) data must meet certain security requirements as explicitly instructed by PCI.
As mandated, acquirers must keep a summary listing of the cryptographic keys used for the acquiring and processing of PIN data including keys used by POI devices, HSMs, etc. UL performs physical, logical as well as IP protocol and secure data encryption assessments of these devices.
UL is accredited by Visa Inc. to perform Visa PIN Security Onsite Assessments based on PCI PIN compliance.
- UL has an advanced understanding of the various requirements of networks. We maintain detailed awareness of current industry best practice in the area of PIN security and associated compliance matters, e.g. management.
- UL's security reviews are thorough and mindful of clients' business requirements. Where change is required, we always seek the best value-driven solution that provides top-level security in a time and cost-efficient manner.
- UL collaborated with Visa to develop the first PIN Entry Device (PED) testing requirements; this enabled us to become the first PCI PIN Transaction Security Laboratory, and the only domestic organization with said credentials.