Advice in Phases PCI PIN 3.1
Desde el diagnóstico hasta la certificación
¿Preparado para PCI PIN?
Te guiamos en cada fase
El estándar PCI PIN ver 3.1 incluye dentro de los requerimientos ( 18-3) la implementación de los bloques de llaves ( Key Blocks) para todas las llaves simétricas relevantes de PIN intercambiadas o almacenadas bajo otra llave simétrica (Zone Master Keys (ZMKs), Key-Encipherment Keys (KEKs), Base Derivation Keys (BDKs), Terminal Master Keys (TMKs), and PIN-Encryption Keys (PEKs)
A block of key PIN is a structured format commonly used to store and transport encryption keys for the PIN in a secure way , contains a key protected, use restrictions, and other data that are encrypted.
El estándar PCI PIN ver 3.1 define una fases de implementación de los bloques de llaves de PIN:
FASE I
Implement “Key Blocks” for the internal connections and the storage of the keys within service provider”
Effective date of implementation 1 June 2019.
This phase aims to change the block in the cryptogram of the keys of the format VARIANT to a block format of keys as (AKB, TR-31, Thales Block).
ACTIVITIES:
- Uprising of information architecture transactional .
- Review of the processes cryptographic.
- Accompaniment in the lifting of the inventory of the keys that should be impacted
- Advise the staff of the entity to understand and implement the format of blocks and their application to convert VARIANT to the format supported by your brand of HSM.
- Accompaniment in the definition of the work plan for the migration of the format of the current block to the format supported by your HSM
Deliverable
A document with the plan of activities for the implementation of the requirements described in the PCI Pin Security in numbers 18-3, phase 1.
¿Preparado para PCI PIN?
FASE II
Implemente “Key Blocks” para las conexiones externas a Asociaciones y redes ”
Fecha efectiva de implementación 1 Enero 2023.
This phase aims to deploy the blocks of the keys, PIN with all the entities with which the institution swap keys for PIN.
ACTIVITIES:
- Uprising of information architecture transactional related to the connection with a third party. .
- Review of the processes cryptographic.
- Accompaniment in the lifting of the inventory of the keys that should be impacted
- Advise the staff of the entity to understand and implement the format of blocks and their application.
- Accompaniment in the definition of the work plan for the migration of the format of the current block to the format supported by your HSM
Deliverable
A document with the plan of activities for the implementation of the requirements described in the PCI Pin Security in numbers 18-3, phase II.
FASE III
Implemente “Key Blocks” para las conexiones a los host de los comercios, POS y ATM”
Effective date of implementation is 1 January 2025.
This phase aims to advise the organization in the implementation of the blocks of the keys of the PIN for links to the POS and ATMs.
ACTIVITIES:
- Uprising of information architecture transactional related to the POS /ATM .
- Review of the processes cryptographic.
- Accompaniment in the lifting of the inventory of the keys that should be impacted
- Advise the staff of the entity to understand and implement the format of blocks and their application.
- Accompaniment in the definition of the work plan for the migration of the format of the current block to the format supported by your HSM
Deliverable
A document with the plan of activities for the implementation of the requirements described in the PCI Pin Security in numbers 18-3, phase III.
