PTS Program

Thwarting Fraud Through Encryption

The MasterCard Point of Sale Terminal Security (PTS) program was announced in September 2005 together with a global encryption requirement for data exchanged by wireless POS terminals and Internet/Stand-alone IP-enabled POS terminals. As of January 2007, all acquirers have to replace noncompliant wireless POS terminals and Internet/Stand-alone IP-enabled POS devices with terminals that meet the data encryption requirement and all PTS security standards.

OBJECTIVES AND SCOPE

The objective of the security evaluation program for Internet Protocol-enabled POS devices is to ensure the necessary level of protection for transaction and cardholder data at Merchants that use equipment that support the TCP/IP protocol suite. The security evaluation verifies that POS devices meet the relevant MasterCard requirements in terms of confidentiality, integrity and communicating parties' authentication. By addressing the interface of POS terminals to open networks using open protocols, this new security program complements existing security programs at MasterCard that already address merchants or POS, such as PCI POS PED (security of PIN provided by PIN Entry Devices) and SDP (based on the PCI Data Security Standard).

RESOURCES

The approved POS terminals can be found in the document POS Terminal Security Program - Approval List. A description of the PTS program can be found in the document POS Terminal Security Program - Program Manual. Contact us to send any queries related to the PTS program or the encryption requirements.

For more information, contact us.

POPULAR DOWNLOADS

ALSO OF INTEREST

PCI 360 EDUCATION PROGRAM

The PCI Merchant Education Program provides a holistic view of the Payment Card Industry Data Security Standard DSS through a series of industry webinars.

MASTERCARD SECURECODE™

A large percentage of consumers have indicated that SecureCode would increase their likelihood of buying more online.