The members of the lab network will work together to share best practices and raise the security level within the point of sale industry.
Establishment of the SPVA lab network facilitates the closing of gaps in security payment process compliance by ensuring certain aspects of technology and applied processes will be subject to independent verification and standard guidelines. This will give end-users and customers a method for establishing an independent and credible review of an implementation of forthcoming SPVA best practices and provide them with options to ensure their compliance is verified.
The requirements for eligibility include: provide information security evaluations in the POS industry; Authorized Qualified Security Assessor (QSA); provide evaluations in the PIN entry and device security; approved by the payment card industry to evaluate compliance with the PCI Data Security Standard (PCI DSS), the Payment Application Data Security Standard (PA DSS) and accredited to test PIN entry devices for compliance with the compulsory PCI standards (PCI PED).
Steven Hughes, president of SPVA, said: “This network is an unprecedented milestone in the payments industry as it will connect us directly with the technicians, academics and researchers who are often behind product innovations and future developments and breakthroughs.
“By tapping into this network, the SPVA can draw from a diverse pool of talent to further its mission, extending best practices and guidelines to a comprehensive compliance verification of the whole payment process.”
