New Magento Secure Payment Bridge Delivers Improvements
An updated version of Magento Secure Payment Bridge, the PA-DSS certified payment application offered by Magento to help merchants meet PCI compliance, is now available.
The update will work with Magento Enterprise Edition 184.108.40.206, 220.127.116.11, and 18.104.22.168, and includes the following improvements:
Merchants who are on Magento Enterprise Edition 22.214.171.124, 126.96.36.199, or 188.8.131.52 and are experiencing any of these issues should upgrade to Magento Secure Payment Bridge 184.108.40.206 at their earliest convenience.
How Can I Be PCI Compliant on Magento?
You have a few options on how to achieve PCI Complaince—but it might require some changes to how you handle credit card processing.
Currently, Payment Bridge is not available for Community Edition, but there are several options for achieving PCI Compliance on Magento:
1) Use only hosted payment methods (PayPal express, cybersource hosted order page, authorizenet SIM) and you’re out of ‘PCI scope’—meaning you don’t have your software be PCI Certified because you’re not storing any credit card information locally or processing any transaction on your server.
The downsite: You are redirected to another site, which is not really a seamless solution and the Conversion expert in us would advise against this.
2) Using a SaaS PCI compliant payment application like CRE Secure—which again puts you out of ‘PCI scope’ again because the actual credit card processing happens offsite on someone else’s server that is already PCI Certified.
This service essentially serves up the checkout page from their server and processes the transaction there. Best yet, it supports 4 of the primary payment gateways used today with Authorize.net, Paypal, Chase Paymentech, and Payleap so you can most likely stick with your current merchant services provider.
3) Use our Magento Payment Bridge solution – you’re out of “PCI scope” with Magento, and the Payment Bridge (smaller, simpler, separate app) solution is the software that needs to be compliant – which it already is. This is available free of charge with Enterprise and Professional Editions of Magento and would require an upgrade from Community Edition.
Additional information about Magento Secure Payment Bridge and PCI compliance can be found on the Magento website.