The PCI Software Security Framework (PCI SSF) Validation and Accreditation service is based on the PCI Council’s new approach for securely designing and developing both existing and future payment applications.
Our PCI SSF Validation and Accreditation service is for those seeking to demonstrate compliance with the PCI SSF. Derived from the PCI Data Security Standard and Audit Procedures, the PCI SSF requirements are intended to minimize data breaches leading to the compromise of full magnetic stripe data, card validation codes/values, PINs and PIN blocks, and the fraud resulting from these breaches.
We hold the PCI SSF certification which demonstrates full understanding of the PCI SSF and its two underlying standards:
1. Secure Software Standard (SSS)
2. Secure Software Lifecycle Standard (SSLC)
Our certification also proves our competency in conducting the PCI SSF Validation and Accreditation service.
Through five phases of our PCI SSF Validation and Accreditation service, we will assess your payment application and processes against the applicable requirements within the PCI SSF. Our assessor will then submit a Report on Compliance (ROC) and Attestation of Compliance (AOC) for your review and acceptance before submission to the PCI Council for acceptance.