Control Objective 7: Equipment used to process PINs and keys is managed in a secure manner.

Requirement 29: Your requirements for physical and logical protections for HSMs are met by use of AWS Payment Cryptography.

Requirement 30: Your application will retain responsibility for all physical and logical protection of POI device requirements.

Requirement 31: Protection of secure cryptographic devices (SCD) used by AWS Payment Cryptography was assessed as part of the service’s PCI PIN assessment. You will need to demonstrate protection of any other SCDs used by your application.

Requirement 32: Use of SCDs used by AWS Payment Cryptography was assessed as part of the service’s PCI PIN assessment. You will need to demonstrate access control and protection of any other SCDs used by your application.

Requirement 33: You will need to describe protections of any PIN-processing equipment under your control.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Control Objective 6: Keys are administered in a secure manner.

P2PE Compliance