Comments on: Electronic Commerce Indicator http://www.merchant-account-services.org/blog/electronic-commerce-indicator/ Mon, 30 Jan 2012 15:01:59 +0000 hourly 1 http://wordpress.org/?v=3.3 By: NEWOCTAVE http://www.merchant-account-services.org/blog/electronic-commerce-indicator/comment-page-1/#comment-23738 NEWOCTAVE Fri, 20 Aug 2010 22:07:06 +0000 http://www.merchant-account-services.org/blog/electronic-commerce-indicator/#comment-23738 Don't let your card processors extort you too!! They're telling everyone to change their platforms to be "PCI Compliant", but the reality is many times, there is no requirement for them to be anything!! The following is from https://www.pcisecuritystandards.org/pdfs/pci_pa_dss.pdf: PA-DSS Applicability to Hardware Terminals Hardware terminals with resident payment applications (also called dumb POS terminals or standalone POS terminals) do not need to undergo a PA-DSS review if all of the following are true: 􀂃 The terminal has no connections to any of the merchant’s systems or networks; 􀂃 The terminal connects only to the acquirer or processor; 􀂃 The payment application vendor provides secure remote 1) updates, 2) troubleshooting, 3) access and 4) maintenance; and 􀂃 The following are never stored after authorization: the full contents of any track from the magnetic stripe (that is on the back of a card, in a chip, or elsewhere), card-validation code or value (three- or four-digit number printed on front or back of payment card), PIN or encrypted PIN block. (end of excerpt) In other words, the processing companies aren't even aware that what they're selling is bogus. And if they are, it's just another way to increase billions of $$$ in extra profits. We need to fight this nonsense NOW!! Don’t let your card processors extort you too!!

They’re telling everyone to change their platforms to be “PCI Compliant”, but the reality is many times, there is no requirement for them to be anything!! The following is from https://www.pcisecuritystandards.org/pdfs/pci_pa_dss.pdf:

PA-DSS Applicability to Hardware Terminals
Hardware terminals with resident payment applications (also called dumb POS terminals or standalone POS terminals) do not need to undergo a
PA-DSS review if all of the following are true:
􀂃 The terminal has no connections to any of the merchant’s systems or networks;
􀂃 The terminal connects only to the acquirer or processor;
􀂃 The payment application vendor provides secure remote 1) updates, 2) troubleshooting, 3) access and 4) maintenance; and
􀂃 The following are never stored after authorization: the full contents of any track from the magnetic stripe (that is on the back of a card, in a
chip, or elsewhere), card-validation code or value (three- or four-digit number printed on front or back of payment card), PIN or encrypted
PIN block. (end of excerpt)

In other words, the processing companies aren’t even aware that what they’re selling is bogus. And if they are, it’s just another way to increase billions of $$$ in extra profits.

We need to fight this nonsense NOW!!

]]> By: brandon http://www.merchant-account-services.org/blog/electronic-commerce-indicator/comment-page-1/#comment-299 brandon Thu, 21 Dec 2006 19:27:36 +0000 http://www.merchant-account-services.org/blog/electronic-commerce-indicator/#comment-299 Leonard, There is a company that has a program for e commerce that is eci compliant and pci compliant check out transfirst.com or anyone who needs a billing management system that is completly compliant with Visa and MasterCard and all other card providers.. Leonard, There is a company that has a program for e commerce that is eci compliant and pci compliant check out transfirst.com or anyone who needs a billing management system that is completly compliant with Visa and MasterCard and all other card providers..

]]> By: Leonard J. Mills http://www.merchant-account-services.org/blog/electronic-commerce-indicator/comment-page-1/#comment-64 Leonard J. Mills Mon, 04 Sep 2006 06:24:12 +0000 http://www.merchant-account-services.org/blog/electronic-commerce-indicator/#comment-64 Thanks Johny... Thanks Johny…

]]> By: johnny http://www.merchant-account-services.org/blog/electronic-commerce-indicator/comment-page-1/#comment-63 johnny Sun, 03 Sep 2006 15:43:36 +0000 http://www.merchant-account-services.org/blog/electronic-commerce-indicator/#comment-63 Leonard, all payment gateways like <a href="http://www.authorize.net" rel="nofollow" rel="nofollow">Authorize.net</a> and <a href="http://www.verisign.com" rel="nofollow">Verisign</a> are ECI compliant (as you would expect any payment gateway to be). As far as software goes there is not a whole lot to choose from as most are either not compliant or do not advertise that they are compliant. The only piece of software that I am reasonable sure is ECI compliant is IC Verify. I have heard that Some versions of PC Charge are compliant as well as PC Transact-It but I have been unable to confirm that as of yet. Leonard, all payment gateways like Authorize.net and Verisign are ECI compliant (as you would expect any payment gateway to be). As far as software goes there is not a whole lot to choose from as most are either not compliant or do not advertise that they are compliant. The only piece of software that I am reasonable sure is ECI compliant is IC Verify. I have heard that Some versions of PC Charge are compliant as well as PC Transact-It but I have been unable to confirm that as of yet.

]]> By: Leonard J. Mills http://www.merchant-account-services.org/blog/electronic-commerce-indicator/comment-page-1/#comment-62 Leonard J. Mills Sun, 03 Sep 2006 01:43:16 +0000 http://www.merchant-account-services.org/blog/electronic-commerce-indicator/#comment-62 John, Any suggestions where can a merchant find ECI software to enable his website have ECI and be allowed my Visa/MasterCard... -Leonard J. Mills John,

Any suggestions where can a merchant find ECI software to enable his website have ECI and be allowed my Visa/MasterCard…

-Leonard J. Mills

]]> By: Leonard J. Mills http://www.merchant-account-services.org/blog/electronic-commerce-indicator/comment-page-1/#comment-61 Leonard J. Mills Sat, 02 Sep 2006 16:57:42 +0000 http://www.merchant-account-services.org/blog/electronic-commerce-indicator/#comment-61 I will love to tell my new merchants about this essential point when applying for a Merchant Account... Love the article - give us more... -Leonard J. Mills I will love to tell my new merchants about this essential point when applying for a Merchant Account…

Love the article – give us more…

-Leonard J. Mills

]]>