Your path to compliance
On October 28, 2022, the Payment Application Data Security Standard (PA-DSS), the current security standard for payment software, will be completely replaced by its successor, the Secure Software Standard.
Together with the Secure Software Lifecycle (Secure SLC) Standard, the Secure Software Standard forms the Council’s new PCI Software Security Framework.
What does the PA-DSS retirement mean for you?
The PA-DSS will finally expire on October 28, 2022. Existing PA-DSS validated applications will remain on the validated payment application list until their expiration date. Providers can still submit no/low/high impact changes to their existing PA-QSA until then.
Newly submitted payment applications must already be certified according to the Secure Software Standard.
The transition to the PCI Software Security Framework
The requirements of the two standards PA-DSS and Secure Software Standard cannot be compared 1:1. We will be happy to guide you through the transition.