These devices have been around for some time now and they're only just documenting a standard? I think they also forget who they're targeting their literature to, most people who use these devices won't understand what's been documented. A summary document without acronyms would go some way to assist this.
Mobile point of sale gets a PCI security standard
The advent of mobile point-of-sale (MPOS) systems has been a boon for consumers and retailers of modest means, but the Payment Card Industry Security Standards Council's security wonks worried that they can't adhere to the strict hardware standards that merchants' credit card merchant terminals. Hence the announcement [PDF] of …
COMMENTS
-
Friday 11th May 2018 08:54 GMT Anonymous Coward
Well well, the corruption does on and up
Oh that really going to work! with your average Andriod app wanting access to almost everything on the "mobile device" how can you protect PCI. Its a bit like a PCI terminal with a "capture device" attached.
Why does my Compass app need accesseto my contact list, pictures, data files and phone??
Waze the problem with me playing flappy birds?
You cant just bolt on security and expect it to do a good job, it should be baked into the design from the get-go.