Transcription
List of PABP Validated Payment ApplicationsLast Revised: February 2012*The following List of PABP Validated Payment Applications have been assessed for compliance with the PaymentApplication Best Practices (PABP). Only those versions of the application identified in the listing below have beenevaluated and determined to comply with PABP. Compliance with the PABP is determined based upon data andinformation developed by an evaluation of the application by a Qualified Payment Application Security Company(QPASC). Although Visa reviews the QPASC-developed data and information, Visa does not independently confirmsuch data or information nor does Visa perform any tests or analysis of the functionality, performance or suitability ofany of the applications and/or products listed. Visa makes no endorsement or recommendation of applications orproducts, or of their respective developers or distributors. Furthermore, Visa makes no warranties, guarantees orrepresentations that any of the applications or products will meet your requirements for performance or functionality,that the applications or products will be free from errors or malicious code, or that the applications or products will becompatible with any other systems or applications. Any and all representations or warranties, including any and allrepresentations and warranties made by the payment application vendor, are disclaimed by Visa.The information provided herein is provided “AS IS” with no warranties, expressed or implied, including, but notlimited to, the implied warranties of merchantability and fitness for a particular purpose and/or non-infringement. Theinformation provided herein is subject to change by Visa, with or without notice. Although Visa makes good faithefforts to provide accurate and complete information, merchants, or anyone else utilizing the information set forth onthe following List of PABP Validated Payment Applications remain responsible for confirming the accuracy of theinformation set forth below, including but not limited to, confirming with the appropriate payment application vendorthat the version of the application identified below is in compliance with PABP. Use of any one or more of theapplications below (i) does not guarantee or ensure compliance with the PCI DSS; and (ii) does not satisfy anyAcquirers’ obligation to perform their own evaluation and due diligence, to ensure the PCI DSS compliance of theirmerchants and agents.PA-DSS Validated Payment ApplicationsIn 2008, the PCI Security Standards Council (PCI SSC) adopted Visa’s PABP and released the standardas the Payment Application Data Security Standard (PA-DSS). The PCI SSC is responsible formaintaining and updating the PA-DSS and all related documentation, Payment Application QualifiedSecurity Assessor (PA-QSA) qualification and training, Reports of Validation (ROV) submissions andquality assurance as well as the listing of PA-DSS validated payment applications. The PA-DSS nowreplaces PABP for the purpose of Visa’s compliance program.For more information on the PA-DSS, including program and validation requirements please visit the PCISSC website at www.pcisecuritystandards.org. For PCI SSC’s List of PA-DSS Validated PaymentApplications please visit: www.pcisecuritystandards.org/security standards/vpa/* Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.1
List of PABP Validated Payment ApplicationsPAYMENT APPLICATIONVENDOR/n software VERSIONVALIDATION DATE(1)IBiz E-PaymentIntegrator3October 31, 2008K3DES1.4IBiz Vital/TSYSIntegrator4October 31, 2008K3DES1.4IBiz PaymentechIntegrator5October 31, 2008K3DES1.4IBiz FDMSIntegrator1October 31, 2008K3DES1.4/n software 3-DSecure MPI5October 31, 2008K3DES1.41.0March 15, 2008Trustwave1.43.00.04January 13, 2006403 LabsPrior to 1.3Middleware paymentprocessing that offersmultiple forms of inputsfor processing (virtualterminal, API, COM,batch, POS terminal,and ASP input forms)Geared toward anybusiness thatwarehouses, sells andships or drop-ships itsproducts and goods.Two piece systemcomprised of afulfillment and webcomponent, theassessment only coversthe fulfillmentcomponent1st ctionX911 Softwarewww.911software.comCreditLineAbison, Inc.www.abison.comComprehensiveCommerce Suite(Fulfillment Only)ACI Worldwide, ATED TOPABP VERSION(no change)2.5November 30,2008FortrexTechnologies1.46.0V8(with updated12/11/2008,default nontrack storageconfigurationfiles applied)December 15,2008FortrexTechnologies1.46.0V6(with updated12/11/2008,default nontrack storageconfigurationfiles applied)April 11, 2006SolutionaryPrior to 1.3DESCRIPTIONSuites of softwarecomponents forintegrating paymentapplications withpayment processorsPOS application thatallows for theacceptance of credit,debit and checktransactionsMiddleware transactionprocess. Targetmarket: Processors(no change)Under the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.2
List of PABP Validated Payment ApplicationsPAYMENT IONVALIDATION DATE(1)6.0V8(with updated12/11/2008,default nontrack storageconfigurationfiles applied)December 15,2008FortrexTechnologies6.0V6(with updated12/11/2008,default nontrack storageconfigurationfiles applied)April 11, 2006Solutionary3.2November 30,2008FortrexTechnologies1.4Release 6.3November 30,2008FortrexTechnologies1.4Retail CommerceServer (RCS)4.4January 15, 2008FortrexTechnologies1.4RestaurantManager andWrite On16.0April 15, 2008CoalfireSystems1.415.1December 31,2006CoalfireSystems1.3Agilysys Inc.www.agilysys.comLodgingManagementSystems (LMS)7.0October 31, e J2ME3.0March 8, 2005TrustwavePrior to 1.3BASE24-atmCommerceGatewayOpeN/2Action Systems, Inc.www.actionsystems.comASSESSORVALIDATED TOPABP VERSIONDESCRIPTION1.4Prior to 1.3(no change)Provides a singleplatform to supportmultiple paymenttechnologies utilizingSSL, traditionally utilizedby merchant acquirersand large e-commerceretailersComponent-based openarchitecture that allowsinteroperability with awide-range of contactpoints, including ATMs,POS devices, PDAs,wireless and othertechnologies, used forhigh volume throughputwith applications forEFT, card activity andcheck managementMiddleware paymentapplication. Targetmarket: Large retailers,processorsPoint of sale softwarefor the food serviceindustry(no change)(1)(no change)Property managementsolution for hotels andresorts of varying sizes,used for reservationsand any itemspurchased during thestayPayment solution forthe cellular phoneUnder the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.3
List of PABP Validated Payment ApplicationsPAYMENT IONVALIDATION DATE(1)2.5March 8, 20054.1ASSESSORVALIDATED TOPABP VERSIONTrustwavePrior to 1.3September 15,2008Trustwave1.43.2sSeptember 15,2008Trustwave1.43.0November 15,2007Trustwave1.34.0September 15,2008Trustwave1.42.2September 15,2008Trustwave1.42.0November 15,2007Trustwave1.3FiPay PIN2.0November 15,2007Trustwave1.3PathFinder2.3September 15,2008Trustwave1.4DESCRIPTIONplatform(no change)AJB Software DesignInc.www.ajbsoftware.comRetail TransactionServer (RTS)FiPayAlaric Systems Ltd.www.alaricinternational.comAldelo Systems, Inc.www.aldelo.com(1)Gateway responsible foraccepting transactionsfrom remote stores andprocessing thetransactionsNetwork-aware serverproduct that acceptsrequests from POSterminalsProvides an interfacebetween PIN pads andPOS then sendstransactions either to anRTS switch or directly tothe bankAdministrative interfacefor managing the RTSservers2.0November 15,2007Trustwave1.3Authentic3.0July 31, 2007TrustwavePrior to 1.3Payment gatewaysolution for theswitching,authentication andauthorization needs ofan issuer or acquirer ofcredit, debit, charge orprivate label cardsFractals3.2July 31, 2007TrustwavePrior to 1.3A payment card riskmanagement and frauddetection system6.0.1.18February 28, 2007(no change)1.3Middleware designedto provide web serviceinterface forauthorizationprocesses withsupported cardprocessors for internal(trusted network) andinternet focusedapplications desiringpayment enablementAldelo EDCCoalfireSystemsUnder the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.4
List of PABP Validated Payment ApplicationsPAYMENT APPLICATIONVENDORAllied TIONAPPLICATIONVERSIONVALIDATION DATE(1)NexGenN50April 15, 2008CoalfireSystems1.4Station SiteController (SSC)A50April 15, 2008CoalfireSystems1.4Chief .altametrics.comThinkPOS4.43bOctober 15, 2008Amano Cincinnatiwww.amano.comAGP-2050rev 7.4 - 9.8September 30,2006AGP-4300rev 7.4 - 9.8September 30,2006AGP-4400rev 7.4 - 9.8September 30,2006AGP-52003.0.0.0September 30,2006AGP-6050rev 7.4 - 9.8September 30,2006AGP-6800rev MN223803September 30,2006ASSESSORVALIDATED TOPABP VERSIONDESCRIPTIONHardware basedforecourt controllersystem that runs theoperations for a gasstation including gaspump controls andcredit card processingHardware basedforecourt controllersystem that runs theoperations for a gasstation including gaspump controlsPOS for quick servicerestaurants, delivery,fast casual and finedining restaurants(no change)(no change)(no change)(no change)Payment application forparking lots(no change)(no change)AGP-78003.0.0.0September 30,2006(no change)AGP-94002.1September 30,2006(no change)iParc(1)2.4.0.0November 15,2007Web-based parkingrevenue and accesscontrol managementsoftwareUnder the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.5
List of PABP Validated Payment ApplicationsPAYMENT IONVALIDATION DATE(1)Amano McGann Inc.(formerly McGannParking re forParking SystemsBuild 17February 28, 2007(no change)American Expresswww.aexp.comPurchaseExpress3.2 ServicePack 9Applied MicroTechnology, Inc.www.appmicrotech.comAMT.SApplied RetailSolutionswww.ars-retail.comArts ManagementSystems Ltd.www.artsman.com(1)ASSESSORVALIDATED TOPABP VERSIONDESCRIPTIONTrustwave1.3Software to operate avariety of automobileparking facilitiesaccommodating manytypes of facility accessand paymentPOS used by small tomedium sizedmerchants forauthentication andsettlement oftransactionsAccepts credit, debitand cash as a methodof payment for thepurchase or recharge ofa SMART card, targetedto the laundry and carwash industriesMay 31, 2008SecurityMetrics1.44.0May 15, 2008Igxglobal1.4CharmingShoppes POS5.0December 31,2007Trustwave1.3Custom POS designedfor department storesISP5.0December 31,2007Trustwave1.3IP Store7.3March 31, 2008Trustwave1.4Theatre Manager8.0October 31, 2008SecurityMetrics1.4In-store processormodule acts as a server/payment cardauthorization gatewayfor multiple cashregisters or terminalmodulesFormerly OnePointeCustom softwareapplication designed toprocess transactions ata department storeAllows arts andentertainmentorganizations with aneed for a ticketing,scheduling andreceiving need to takeweb-based, phone, orwalk-up ordersUnder the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.6
List of PABP Validated Payment ApplicationsPAYMENT IONVALIDATION DATE(1)Card(customer mobileapplicationv1.0.40, merchantmobile applicationv1.0.20, merchantPC applicationv1.0.21.0,intermediateserver v1.15.01,bank utilitysoftware v1.0.1.7,multi channelgateway v1.0.40,middlewarev1.0.40, VPOSv1.0.25, NACv1.0.25, webreporting modulev1.0.40)Paybuzz1.0.40November 30,20081.0.8August 31, 0.14Auric Systemswww.auricsystems.comCN!ExpressCN!Express withPaymentVaultv1.0.3atom aseVALIDATED TOPABP VERSIONDESCRIPTION1.4Mobile based paymentsolution, allowing amobile phone to beused for financialtransactions such aspurchases, refunds,cancellations, etc.Platform is designed tobe sold as a wholepackage to banks sothat banks can issuemobile based creditcards, components arehoused at eithermerchant location orbank locationControlCase1.4IVR based solutionwhich enables themerchant to automateacceptance of creditcard payments over thephone for ecommercetransactionsApril 30, 2007VeriSign1.3Web POS applicationfocused on eventticketing4.0.2.4September 15,2008PSC1.4Payment transactionengine for small tomedium sizedmerchants conductingweb, phone and POStransactions4.0.2.4October 31, 2008PSC1.4Add on feature forother card processingapplications by thevendor, that allowscustomers to storecardholder informationlong termTrevance2.2April 15, 2008PSC1.4TrevanceTransactionGateway2.0March 8, 2006PSC1.3Combines high speedreal-time authorizationand high volume batchsettlement. It is atranslator betweenmerchant andprocessor systems(no change)Under the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.7
List of PABP Validated Payment ApplicationsPAYMENT APPLICATIONVENDORAPPLICATIONVERSIONVALIDATION DATE(1)Trevance withPaymentVaultv1.0.32.2April 15, 2008PSC1.4Add on feature forother card processingapplications by thevendor, that allowscustomers to storecardholder informationlong termAuto StarCompusystems, Inc.www.auto-star.comStar Plus(aka Star Lite)7.21June 15, 2008igxglobal1.4Single or multi-lanePOS for grocery,pharmacy orconvenience storesAutoClerk, Inc.www.autoclerk.comAutoClerk withResOnWeb andBest WesterninterfacesAutoGas REGALStreamline 28November 15,2008DRG1.44.10September 30,2007Trustwave1.3Property managementsystem designedspecifically for the hotelindustryComplete paymentsolution for petroleumand convenient ONASSESSORVALIDATED TOPABP VERSION(no change)AVF y 15, 2008FortrexTechnologies1.42.0February 7, 2006FortrexTechnologiesPrior to 1.3(no change)Beijing Shijiwww.shijinet.com.cnPayment GatewaySystemBIG Software, Inc.www.bigsoftwareinc.comQuick-PaymentBlue Bamboowww.bluebamboo.comPocket POS(1)2.6October 31, 2008Trustwave1.42.5February 28, 2007(no change)Trustwave1.32007 SP2Version 2.3September 30,2007CoalfireSystems1.31.0.1March 30, 2008DRG1.4DESCRIPTIONChargeLogic forMicrosoft Navisionallows users to processpayments via credit,debit, gift, EBT, andcheck cards easily andsecurely usingNavision Sales &Receivables or LSRetailPayment gatewaymiddleware between ahotel andprocessor/merchantbankQuick-Payment 2007 isa plug-in applicationthat integrates withMicrosoft OfficeAccounting 2007 andenables newfunctionality at thedesktop to makeaccepting credit cardseasierJava application that isoptimized for BlueBamboo hardwaretransactional hardware(H50), Bluetoothenabled mobile devices(PDA, cell phones)utilizing MIDP 1.0 Under the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.8
List of PABP Validated Payment ApplicationsPAYMENT APPLICATIONVENDORPAYMENTAPPLICATIONCAM CommerceSolutionswww.camcommerce.comX-Charge CreditCard SoftwareCAP Softwarewww.capretail.comCAP RetailManager with CAPPOS (DataCapDSIClient v3.8.0.0or VeriFonePCCharge v5.7 )Command RetailCelerant TechnologyCorp.www.celerant.comCHARGE NVALIDATION DATE(1)ASSESSORVALIDATED TOPABP VERSION6.2October 31, 2007K3DES1.46.1July 20, 2006K3DES1.3CoalfireSystems1.4(no change)DESCRIPTIONAllows POS applicationto processtransactions. Small tomedium brick-andmortar and MOTOindustry2008.01.00October 31, 20086.0November on forQuickBooks 8.0 2.45.0October 31, 2008403 Labs1.4CHARGEAnywhereSoftwareApplication forBlackberry 4.1 2.0.0October 31, 2008403 Labs1.4CHARGEAnywhereSoftwareApplication forWindows Mobile5.0 2.0.0June 15, 2008Trustwave1.4CHARGEAnywhereSoftwareApplication for RIM950 devices2.0.0May 31, 2007Trustwave1.3A mobile paymentapplication that allowsmerchants to processmultiple types of creditcard transactions;requires paymentprocessing throughCHARGE AnywhereCHARGEAnywhereSoftwareApplication forSpectra POS2.0.0October 31, 2008403 Labs1.4Payment applicationthat allows POS devicesto perform credit anddebit card paymenttransactions; requiresServes customers in theliquor store,convenience / grocerystore and tire storemarkets, among othersRetail POS for mediumto large retailorganizations with aphysical presenceA payment applicationdesigned for use withIntuit QuickBooks thatallows merchantsmultiple types of creditcard transactions;requires paymentprocessing throughCHARGE AnywherePayment applicationsfor traveling merchantsthat allowsSmartphones to performcredit card paymenttransactions; requirespayment processingthrough CHARGEAnywhereUnder the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.9
List of PABP Validated Payment ApplicationsPAYMENT IONVALIDATION DATE(1)ASSESSORVALIDATED TOPABP VERSIONCHARGEAnywhereSoftwareApplication forVeriFone POS2.0.0October 31, 2008Trustwave1.4payment processingthrough CHARGEAnywhereComLink--CardPool 20002.0March 31, mCWDirect11.5May 31, 2008Trustwave1.410.0July 20, 2006Trustwave1.3The CardPool 2000application isdeveloped by ComLink.As a credit cardauthorization system,the application canprocess allauthorization andsettlement transactionsrelated to the acquiringbankDesigned to be used bycustomers with callcenters. Credit cardscan either be processedimmediately via phoneorders or in batchesDesigned to be used bycustomers with mediumto large size callcenters. Credit cardtransactions areaccepted via phoneRestaurant POSapplication with supportfor integrated EFTIncludes both backoffice and front endPOS targeted for therestaurant and barindustry(no change)CWSerenade1.0November 15,2008Trustwave1.4Compris Technologieswww.compriscorp.comCompris POS6.0.2July 31, 2007Trustwave1.3Comtrex Systemswww.comtrex.comOdyssey Suite2.0May 15, 2008CoalfireSystems1.4Corporate WebSolutionswww.cwshost.com.netCHARGE5.0May 16, 2006TrustwaveCR Software, LLCwww.crsoftwareinc.comPlatinum CreditCard Module4.14May 31, 2008SecurityMetrics1.4Crain/Atlanta, Inc.www.crainatlanta.comTheatre TicketingSystem (vbTTS) III1.3April 15, 2008CoalfireSystems1.4(1)Prior to 1.3(no change)DESCRIPTIONASP.NET Paymentcomponent for webbased applicationsApplication forcollection agencies andany customer with aneed for an Accountsreceivable applicationfor their businessIncludes back-office,front-office ticket, frontoffice concessions, andoutside/internet salesfor movie theatresUnder the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.10
List of PABP Validated Payment ApplicationsPAYMENT IONVALIDATION DATE(1)ASSESSORVALIDATED TOPABP VERSIONCRS, Inc.www.crs-usa.comSAM4S SPS-20003.00gNovember 15,2008403 Labs1.4CSI Softwarewww.csisoftwareusa.comCSI SoftwareSpectrum NG2.5September 30,2008Trustwave1.4CTR Systems, Inc.www.ctrsystems.comPARC/S2.2.18February 15, 2008Trustwave1.4Cubic ParkingSystemswww.parking.caAutoimporter2.01June 5, 2006TrustwavePrior to 1.3TrustwavePrior to 1.3TrustwavePrior to 1.3TrustwavePrior to 1.3TrustwavePrior to 1.3TrustwavePrior to 1.3DESCRIPTIONTouch-screen, flashmemory based POS,that accepts cardpresent transactionsand requires the use ofa third party middlewareauthorizing andsettlement device viaserial connectionUsed primarily in thefitness club and gymarena for onsitepurchases as well asthe payment ofmembership duesParking and RevenueControl software(PARC/S) givescustomers thefunctionality and toolsnecessary to easilymanage and reportrevenue as it relates toparking(no change)CDM5.7.26June 5, 2006(no change)CMM7.0.0.33June 5, 20060.88June 5, 2006(no change)JavaTermLauncherPay Station VMC1Payment application forparking lots(no change)5.70.aJune 5, 2006(no change)Pay Station VMC27.00.aJune 5, 2006(no change)Cubic bstone.com(1)Cubic PaymentApplication (CPA)with HardwareSecurity ModuleinstalledCurbstone Card01.0102.01October 31, 2008PSC1.42.1October 31, 2008FortrexTechnologies1.4Payment module forNextfare CentralSystem, used forautomatic fare collectionin public transit systemsCurbstone Cardsoftware is a highlyconfigurable, off-theshelf, shrink-wrapapplication for cardUnder the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications 2009 Visa Inc.11
List of PABP Validated Payment ApplicationsPAYMENT IONVALIDATION DATE(1)2.xDecember 27,2005ASSESSORTrustwaveVALIDATED TOPABP VERSIONPrior to 1.3(no change)Cutting Edge Solutionswww.futurepos.comFuture POS4.0.0128January 31, 2007CoalfireSystemsDESCRIPTIONauthorization andsettlement sold andsupported exclusivelyon the IBM AS/400iSeries platform1.3POS application forrestaurant industry.CVPS, Inc.www.cvaletps.comCyberSource(a Visa company)www.cybersource.comComputerizedValet ParkingSystem withVerifonePCCharge v5.7.1SP8cCyberSourcePayment Manager(CPM)K3DES1.4Used by valet parkingcompanies to managetheir valet businessincluding parkingoperations, reportingand payment processingNovember 15,2008PSC1.4March 6, 2006PSCPrior to 1.3CPM is highly reliable,enterprise-widepayment processingplatform that operatesbehind the scenes toauthorize and settlepayments originatingfrom one or more saleschannels5.1October 31, 20086.46.0(no change)DaRe Solutionswww.ordyx.com(1)InternetCommerce Suite(ICS) includingSimple Order andSOAP API1.0October 31, 2008PSC1.4InternetCommerce Suite(ICS) HostedOrder Page (HOP)1.0December 31,2007PSC1.4InternetCommerce Suite(ICS) SecureStorage (SS)1.0December 31,2007PSC1.43.0.6October 31, 2008K3DES1.4OrdyxPayment system for useby merchants whorequire differentcapabilities to processcard not presenttransactionsSimple paymentsystem for use bymerchants who requirea simple check outprocess to handlecredit card payments,without the need formerchants to handlethe credit cards directlyAllows merchants tocreate customerprofiles for periodicbilling, installmentbilling and recurringbillingPOS for a broadspectrum of restaurantsand bars providing timetracking, delivery,detailed inventory,payment processing, fullreporting capabilitiesUnder the PABP program requirements an annual validation was required for those payment applications with major upgradeor product version changes. If there were no changes to the product, Visa required a letter signed by an Officer of thesoftware company indicating no changes to the payment application and continued adherence to the Payment ApplicationBest Practices. Visa notes that there were no changes to the product as attested to by the software company.Revisions of the list since December 2008 include existing PABP validated vendor name and product name corrections only. Allnew assessments should undergo PA-DSS validation by a PA-QSA and listing with the PCI SSC.List of PABP Validated Payment Applications
Trustwave 1.4 2.0 : November 15, 2007 . Trustwave : 1.3 FiPay PIN . 2.0 : November 15, 2007 . Trustwave : 1.3 Provides an interface between PIN pads and POS then sends transactions either to an RTS switch or directly to the bank PathFinder . 2.3 : September 15, 2008 . Trustwave : 1.4 Administrative interface for managing the RTS 2.0 . November .
