ISO 9564-1:2002
Banking - Personal Identification Number (PIN) management and security - Part 1: Basic principles and requirements for online handling in ATM and POS systems

Standard No.
ISO 9564-1:2002
Release Date
2002
Published By
International Organization for Standardization (ISO)
Status
 2011-02
Replace By
ISO 9564-1:2011
Latest
ISO 9564-1:2017
Scope
This part of ISO 9564 specifies the basic principles and techniques which provide the minimum security measures required for effective international PIN management. These measures are applicable to those institutions responsible for implementing techniques for the management and protection of PINs. This part of ISO 9564 also specifies PIN protection techniques applicable to financial transaetion-card-originated transactions in an online environment and a standard means of interchanging PIN data. These techniques are applicable to those institutions responsible for implementing techniques for the management and protection of the PIN at Automated Teller Machines (ATM) and acquirer sponsored Point-of-Sale (POS) terminals. The provisions of this part of ISO 9564 are not intended to cover: a) PIN management and security in the offline PIN environment, which is covered in ISO 9564-3; b) PIN management and security in the electronic commerce environments, which is to be covered in a subsequent part of ISO 9564; c) the protection of the PIN against loss or intentional misuse by the customer or authorized employees of the issuer; d) privacy of non-PfN transaction data; e) protection of transaction messages against alteration or substitution, e.g. an authorization response to a PIN verification; f) protection against replay of the PIN or transaction; g) specific key management techniques.

ISO 9564-1:2002 history

  • 2017 ISO 9564-1:2017 Financial services - Personal Identification Number (PIN) management and security - Part 1: Basic principles and requirements for PINs in card-based systems
  • 2015 ISO 9564-1:2011/Amd 1:2015 Financial services - Personal Identification Number (PIN) management and security - Part 1: Basic principles and requirements for PINs in card-based systems; Amendment 1
  • 2011 ISO 9564-1:2011 Financial services - Personal Identification Number (PIN) management and security - Part 1: Basic principles and requirements for PINs in card-based systems
  • 2002 ISO 9564-1:2002 Banking - Personal Identification Number (PIN) management and security - Part 1: Basic principles and requirements for online handling in ATM and POS systems
  • 1991 ISO 9564-1:1991 Banking; Personal Identification Number management and security; part 1: PIN protection principles and techniques


Copyright ©2024 All Rights Reserved