The PCI Security Standards Council is seeking feedback on the draft PCI PTS POI Modular Security Requirements v7.0 during a 30-day RFC period. This version aims to enhance security controls against physical tampering and malware insertion in payment transactions, with over 30 requirement changes and 14 additional guidance pieces
Changes include security enhancements for biometric interfaces, allowing third-party applications, and setting a minimum of 128 bits for cryptographic key strength. Stakeholders can access the RFC through the PCI SSC portal, where comments must be submitted within the specified period after accepting a Non-Disclosure Agreement (NDA) to download the document. https://blog.pcisecuritystandards.org/request-for-comments-pci-pts-poi-modular-security-requirements-v7-0-october