Vendors that perform the initial provisioning of devices and injection of keys, must establish a security setup that complies with PCI PIN requirements. This talk provides guidance on how to establish and operate an efficient PCI compliant service for provisioning PCI PTS devices. Subjects covered include:
- User Management, User Identification and User Roles
- Cost of establishing HSA, CA, HSM’s, etc.
- Practical Key Management – Key Import and Export, back-up, etc.
- Audit trail
- Secure device link, no injection of clear-text keys
- Key Binding via TR-31 cryptograms
The information and examples serve to confirm your understanding and perhaps as inspiration to optimize your key injection.