Important Notice from AspDotNetStorefront
It is with dismay that we report that we have been forced, through the action of hackers, to shut off write-access to this forum. We are keen to leave the wealth of material available to you for research. We have opened a new forum from which our community of users can seek help, support and advice from us and from each other. To post a new question to our community, please visit: http://forums.vortx.com
Results 1 to 2 of 2

Thread: Does altering the source code nullify the PCI pa-dss compliance?

  1. 01-23-2011, 05:44 PM #1
    ecommboy is offline Junior Member
    Join Date
    Sep 2009
    Posts
    3

    Default Does altering the source code nullify the PCI pa-dss compliance?

    If you alter the source code, does it nullify the pci pa-dss compliance and then require a re-assessment?
  2. 01-24-2011, 10:20 AM #2
    AspDotNetStorefront Staff - Scott's Avatar
    AspDotNetStorefront Staff - Scott is offline Administrator
    Join Date
    Mar 2007
    Location
    Ashland, OR
    Posts
    2,390

    Default

    Technically, yes.

    Realistically - unless you touch any security or gateway related code, you're probably not messing with anything that'll affect PA-DSS compliance. While technically you're required to have the customizations reviewed by a QSA, it won't be an issue until/unless your site is audited.

    If you decide not to have the review done, and you have some kind of a breach and get audited....ouch. That's not a cheap settlement.
    ECommerce Shopping Cart