ISO 9564-1:2002
w
ISO 9564-1:2002
29374

Status : Withdrawn

This standard has been revised by ISO 9564-1:2011

Abstract

This part of ISO 9564 specifies the basic principles and techniques which provide the minimum security measures required for effective international PIN management. These measures are applicable to those institutions responsible for implementing techniques for the management and protection of PINs.

This part of ISO 9564 also specifies PIN protection techniques applicable to financial transaction-card-originated transactions in an online environment and a standard means of interchanging PIN data. These techniques are applicable to those institutions responsible for implementing techniques for the management and protection of the PIN at Automated Teller Machines (ATM) and acquirer sponsored Point-of-Sale (POS) terminals.

The provisions of this part of ISO 9564 are not intended to cover:

  1. PIN management and security in the offline PIN environment, which is covered in ISO 9564-3;
  2. PIN management and security in the electronic commerce environments, which is to be covered in a subsequent part of ISO 9564;
  3. the protection of the PIN against loss or intentional misuse by the customer or authorized employees of the issuer;
  4. privacy of non-PIN transaction data;
  5. protection of transaction messages against alteration or substitution, e.g. an authorization response to a PIN verification;
  6. protection against replay of the PIN or transaction;
  7. specific key management techniques.

General information

  •  : Withdrawn
     : 2002-04
    : Withdrawal of International Standard [95.99]
  •  : 2
     : 30
  • ISO/TC 68/SC 2
    35.240.40 
  • RSS updates

Life cycle

Got a question?

Check out our FAQs

Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)