Home News & events Press Releases 2009 Compass Plus accepted to comply with the Payment Application Data Security Standard

 

bCompassPlusCompass Plus is one of the few companies that has been accepted to be compliant with the Payment Application Data Security Standard (PA-DSS). In accordance to the PCI Security Standards Council (PCI SSC) website, only 11% of payment applications have received PA-DSS certification so far. The confirmation of TranzWare product suite, including the flagship products TranzWare CMS and TranzWare Online, achieving full validation with the PA-DSS was received on the 21 of September, 2009.
www.pcisecuritystandards.org

Visa has set a deadline of July 2010, by which all payment system participants must use PABP or PA-DSS compliant applications. All other software applications developed and sold by third parties will no longer be compatible with the Visa payment network. Compass Plus customers using TranzWare products worldwide will directly benefit from the PA-DSS compliance as it will simplify the procedure for achieving their own PCI DSS compliance that is also compulsory for all companies working with MasterCard and Visa and failure to do so will bring adverse consequences.

PA-DSS is a Council-managed program formerly under the supervision of the Visa Inc. program known as the Payment Application Best Practices (PABP). The goal of PA-DSS is to help software vendors and other related companies develop secure payment applications taking into account the PCI SSC requirements with regards to storage, processing and transferring payment card data (for example, CVV2 or PIN data). As a whole, these requirements facilitate changes in the software development and testing processes, thereby increasing the quality of payment applications.

Compass Plus worked with Trustwave Ltd. – a Qualified Security Assessor, in order to perform a PA-DSS assessment to determine the compliance of Compass Plus’ applications with the PCI Security Standards Council’s (PCI SSC) Payment Application Data Security Standard (PA-DSS) version 1.2.

Of the successful PA-DSS audit completion, Youri Koliakin CEO&P of Compass Plus said: "PA-DSS requirements for the developers of crucial electronic payment systems from a security point of view are dictated by time and are based on the financial industry’s recent history. Compass Plus have always made the security and reliability of its products and solutions the highest priority and our efforts in this field have resulted in the company being awarded the PA-DSS certificate. I want to take this opportunity to congratulate all Compass Plus employees, customers and partners. Also it should be noted that electronic payment system break-in methods are constantly improving, threats do not vanish but instead grow together with the development of payment systems and the increasing sophistication of payment software products. Therefore, following the established corporate culture of systematic approaches to problem solving, Compass Plus continues to maintain a high priority stance for the development of security, reliability and control in our products and solutions."

Trustwave is the leading provider of on-demand data security and payment card industry compliance management solutions to businesses and organizations throughout the world. Trustwave offers a wide range of security services to help businesses analyze and test current information security controls and, if necessary, provide guidance to remediate any deficiencies identified. With its security services, Trustwave helpes to secure data, optimize network assets and mitigate the risk of data loss through shortfalls in application security controls.
www.trustwave.com