CHICAGO AND NACKA, SWEDEN (October 6, 2009) - Auriga, the leading independent Swedish Payment Service Provider of card transactions with ECR-integrated card payments, has achieved compliance validation with the Payment Application Data Security Standard (PA DSS) version 1.2 for its Auriga Transaction Client (ATC) version 1.0 payment application. Trustwave, the leading provider of on-demand data security and payment card industry compliance management solutions to businesses and organizations throughout the world, performed the validation.
PA DSS applies to software vendors who develop payment applications that store, process, or transmit cardholder data as part of authorization or settlement. The annual security review consists of 14 requirements, including protection of card holder data, secure passwords, protection of wireless transmissions, encryption of sensitive traffic over public networks and more. To view Auriga's validated payment application on the PCI Security Standards Council Web site, click here.
Auriga's ATC is the first payment application in the Nordic countries validated compliant with the PA DSS. As a software solution for handling card payment in stores, restaurants, hotels and unattended environments like vending machines, ATC interacts with the sales application, the chip and PIN-terminal and Auriga's host systems and manages all stages of transaction handling. Card data is protected by encryption or truncation in the terminal and SSL is used for authentication of Auriga's host systems.
"Validating our payment application compliant with the PA DSS helps secure our merchant's environment and protects them from potential fraud and card data theft," says Bertil Nordlöf, CEO at Auriga. "Good security practices are important to Auriga which is clearly evident as we are the first PA DSS validation in the Nordic region."
"This validation demonstrates Auriga's commitment to developing secure payment applications for customers to help mitigate risk of potential credit card compromise," says Robert J. McCullen, chairman and CEO of Trustwave. "Validating compliance will help merchants secure the payment transaction chain and facilitate their own compliance with the PCI DSS."
About Auriga
Auriga is the leading independent Swedish Payment Service Provider of card transactions with ECR-integrated card payments, having 39 years of experience in payment services.
About Trustwave
Trustwave is a leading provider of on-demand and subscription-based information security and payment card industry compliance management solutions to businesses and government entities throughout the world. For organizations faced with today's challenging data security and compliance environment, Trustwave provides a unique approach with comprehensive solutions that include its flagship TrustKeeper® compliance management software and other proprietary security solutions including SIEM , WAF , EV SSL certificates and secure digital certificates . Trustwave has helped hundreds of thousands of organizations-ranging from Fortune 500 businesses and large financial institutions to small and medium-sized retailers-manage compliance and secure their network infrastructures, data communications and critical information assets. Trustwave is headquartered in Chicago with offices throughout North America, South America, Europe, Africa, Asia and Australia. For more information, visit https://www.trustwave.com/en-us/.
