From May 21 to June 21, eligible stakeholders are invited to review and provide feedback on the draft PCI PIN Transaction Security (PTS) Point of Interaction (POI) Modular Security Requirements v7.0 during a 30-day request for comments (RFC) period. The update aims to enhance security controls against physical tampering and malware insertion during payment transactions, with over 30 requirement changes and additional guidance
Changes include new requirements for biometric interfaces' security, usage of third-party applications, and cryptographic key strength. Feedback must be submitted via the PCI SSC portal within the defined RFC period, after accepting a Non-Disclosure Agreement (NDA) to download the document. The RFC Process Guide provides detailed information on the review process. https://blog.pcisecuritystandards.org/request-for-comments-pci-pts-poi-modular-security-requirements-v7-0