Frequently Asked Questions

< Back to search page

I make ATMs, what do I need to do for PTS?

FAQ Response

Overall ATM requirements are not currently included in the PTS program so there is no cause for action in this regard. The Encrypting PIN Pad category will still feature in the program, which does impact ATMs. However there is currently no material change to testing procedures or website listings.

Beginning in version 3 of the POI requirements, the security requirements were enhanced to include modules for the Secure Reading and Exchange of Data and for Open Protocols.  In version 4, while the security requirements did not significantly change, the underlying testing procedures are much more robust in both what the testing laboratory must do to validate device compliance, and in what support the vendor must provide to support that testing. 

January 2014
Article Number 1050

Related Articles

What is the Council’s guidance on the use of SHA-1?

Does the use of expired PTS POI devices meet eligibility criteria for SAQ B-IP?

Does PCI DSS, PA-DSS, or PTS apply to ATMs?

How do PCI PTS-approved POI device expiry dates affect a PCI-listed P2PE solution?

What are the expiry dates for PTS POI device approvals?