Customer Service:
Mon - Fri: 8:30 am - 6 pm EST

 Most recent

ANSI/X9 TR-39-2009

TG-3 Retail Financial Services Compliance Guideline - Part 1: PIN Security and Key Management

This guideline applies to all organizations using the Triple Data Encryption Algorithm - TDEA (Reference 7) for the encryption of PINs used for retail financial services such as POS and ATM transactions, messages among retailers and financial institutions, and interchange messages among acquirers, switches and card issuers. The guideline should be completed by all organizations acquiring or processing transactions containing PINs, from the terminal driving system to the authorizing entity. The guideline Control Objectives address security controls from the PIN entry device to the interface delivering the transaction to the authorizing entity. When this guideline is completed by a device manufacturer, the Control Objectives are intended to evaluate the manufacturing environment and the device's ability to be implemented in a manner compliant with X9.8 and X9.24 (all parts).

Content Provider
Accredited Standards Committee, Inc. - Financial Industry Standards [ASCX9]


As the voice of the U.S. standards and conformity assessment system, the American National Standards Institute (ANSI) empowers its members and constituents to strengthen the U.S. marketplace position in the global economy while helping to assure the safety and health of consumers and the protection of the environment.