In a post earlier this month we looked at update 3.2 to the PCI-DSS standard. The 3.2 update mandates more mobile app security testing with its requirement for two penetration tests each year along with deadlines for Multi Factor Authentication and a migration away from SSL/TLS encryption.

PCI DSS 3.2 replaces 3.1 which will expire on October 31, however, the deadlines for SSL/TLS migration and Multi Factor Authentication are being extended to July 2018 and 1 Feb 2018 respectively.

This change is a way to support organisations using legacy infrastructures, however, it is clear that organisations ought to implement these changes as soon as possible.

Codified Security Instant will help you to meet PCI–DSS standards for secure mobile app development and mobile app security testing. To find out whether there are PCI issues in your app please sign up to Codified Security.