cancel
Showing results for 
Search instead for 
Did you mean: 
MsGsUbs1
Member
Status: Under Review

Hi

 

Following our recent Gap Analysis for PCIDSS Compliance, it was suggested that at the point of entering the Credit/Debit card details for payments, the PAN should be masked. This would then take away the opportunity for screen scraping where the user could screen shot the full details, or copy and paste them somewhere else.

 

After getting in touch with the dev team at Authorize, they have advised that this would be a good idea to get rolling and the best way to do this is to add it here. So here we are!

 

Many thanks

Amber

4 Comments
PCIMark
Member

This is a recommendation included in the latest PCIDSS version 3.2 standards.

 

https://www.pcisecuritystandards.org/

 

Regards

 

Mark

Status changed to: Under Review
RichardH
Administrator Administrator
Administrator
 
macjny67
Member

Has this been worked on since this post? It is something we are implementing but need the masking of the CC# when entering.

MsGsUbs1
Member

Hi, there has been no further feedback given on this. I was advised that it needed votes to be pushed through development