|
ISO 9564 is an international standard for personal identification number (PIN) management and security in retail banking. The PIN is used to verify the identity of a customer (the user of a bank card) within an electronic funds transfer system, and (typically) to authorize the transfer of funds. Therefore, it is important to protect such PINs against unauthorized disclosure or misuse. Modern banking systems require interoperability between different card issuers, acquiring banks and retailers – including transmission of PINs between those entities – so a common set of rules for handling and securing PINs is required, both to ensure technical compatibility and a mutually agreed level of security. ISO 9564 provides principles and techniques to meet these requirements. ISO 9564 comprises four parts, under the general title of ''Financial services — Personal Identification Number (PIN) management and security''.〔The exact wording of this title varies between parts. This is the wording of the most recently published part.〕 ==Part 1: Basic principles and requirements for online PIN handling in ATM and POS systems== ISO 9564-1:2002〔(ISO 9564-1:2002 ''Banking — Personal Identification Number (PIN) management and security — Part 1: Basic principles and requirements for online PIN handling in ATM and POS systems'' )〕 specifies the basic principles and techniques of secure PIN management. It includes both general principles and specific requirements. (ISO 9564-1:2002 has been superseded by ISO 9564-1:2011 ''Basic principles and requirements for PINs in card-based systems''.〔(ISO 9564-1:2011 ''Financial services — Personal Identification Number (PIN) management and security — Part 1: Basic principles and requirements for PINs in card-based systems'' )〕) 抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)』 ■ウィキペディアで「ISO 9564」の詳細全文を読む スポンサード リンク
|