PCI Validated Point-to-Point Encryption

Document created by Chris Jennings on Aug 30, 2016Last modified by Chris Jennings on Oct 16, 2018
Version 9Show Document
  • View in full screen mode

Worldpay helps payment integrators protect account data with point-to-point encryption (P2PE). By leveraging Express PCI-validated P2PE and  PCI PTS SRED certified hardware, payment applications are removed from PA-DSS compliance and merchants can qualify for reduced PCI-DSS scope. Validated P2PE solutions are more secure because the solution is designed to deter tampering from ordering to processing. If malicious activity is detected, the device is disabled, preventing a breach at the point of entry.

 

Benefits of P2PE

  • Validated P2PE provides the strongest protection per PCI SSC for a merchant’s business
  • Worldpay's non-listed encryption and listed P2PE remove ISVs from PA-DSS scope
  • Implementation support for merchant PIM
  • Gateway solution that offers P2PE

 

Vantiv’s P2PE makes PCI compliance easy

Payment software developers that integrate to triPOS or Express have the power to offer merchants significantly reduced PCI-DSS compliance requirements. For merchants using a validated P2PE 2.0 solution they only have to answer the SAQ-P2PE requirements instead of the SAQ-D requirements, which significantly reduces the sections from 12 to 4 and controls (i.e. questions) from 284 to 19. To access this information, the merchant would download the PIM (P2PE Instruction Manual).

 

Validated PCI P2PE 2.0 Hardware

Worldpay Express PCI P2PE Hardware

Learn how to integrate Express Point-to-point encryption

3 people found this helpful

Attachments

    Outcomes