Thread: Upcoming X-Cart v 4.4.6 (now renamed to 4.5.0) & PCI-DSS requirements
View Single Post
  #7  
Old 03-23-2012, 10:07 PM
  seyfin's Avatar 
seyfin seyfin is offline
 

X-Cart team
   
Join Date: May 2004
Posts: 1,223
 
Default Re: Upcoming X-Cart v 4.4.6 & PCI-DSS requirements
Quote:
Originally Posted by gb2world
Hello Sergey -

I have an x-cart instance that uses Authorize.net AIM + DPM which has been approved by a compliance officer at the bank being used. Is there any way for you to investigate Authorize.net AIM + DPM and allow it as a method in 4.4.6 if it meets requirements? It seems that you could get an independent opinion from your auditor about the viability of this method and include it or not.

---

Dear Gabriel,

Actually, Advanced Integration Method (AIM) and Direct Post Method (DPM) are two different solutions. Please do not mix up these terms.

Authorize.Net Direct Post Method (DPM) is considered to be a solution that supports you to be PCI Compliant, as all Credit Card handling is done directly through Authorize.net, and no Credit Card data is handled/stored/processed on the merchant (X-Cart) server.

Please check the links below to learn how AIM and PDM solutions work:

* http://developer.authorize.net/api/howitworks/dpm
* http://developer.authorize.net/api/howitworks/aim
__________________
Sincerely yours,
Sergey Fomin
X-Cart team
Chief support group engineer

===

Check this out. Totally revamped X-Cart hosting
http://www.x-cart.com/hosting.html

Follow us:
https://twitter.com/x_cart / https://www.facebook.com/xcart / https://www.instagram.com/xcart