If you are an SAQ-A merchant, or think you might be, there is some more guidance from the Council on your security requirements. Version 3.2 of SAQ A has introduced additional requirements “to help protect merchant websites from compromise and maintain the integrity of the redirection mechanism”.
But this wont shock anyone who hasn’t descoped their redirecting ecommerce web server. Or those of us who redirect, but don’t forget.
You will want to check out FAQ # 1439 for the official words on why its important to implement some security controls on your redirecting web server.
Ad below this line:
