PCI Review Audit Work Program

Subscriber Content
Screenshot of the first page of PCI Review Work Program

This work program covers a high-level PCI review.

Audit objectives include: PINs used in transactions governed by these requirements are processed using equipment and methodologies that ensure they are kept secure; cryptographic keys used for PIN encryption/decryption and related key management are created using processes that ensure that it is not possible to predict any key or determine that certain keys are more probable than other keys; keys are conveyed or transmitted in a secure manner; key loading to hosts and PIN entry devices is handled in a secure manner; and keys are used in a manner that prevents or detects their unauthorized usage.

Free Trial

Sign up for a free, no-obligation trial to start exploring our timesaving, valuable resources.