Is anyone using DTMF tones to enter card details into the Tessitura Payment window/3rd party payment.
Was it successful/was it scrapped?
Thanks --Wayne
Keyword: PCI-DSS; credit card;
Hi Wayne,
We looked at this as a way of getting around PCI compliance and not recording the card number on a call. Suffice to say our QSA said it wasn't good enough as essential the DTMF tone was being converted to a number within the PC's memory, which was then unencrypted when typed into the message box.
It's ridiculous the amount of red tape we're being forced to jump through so we've decided to use the TNSPay Virtual Client and deliver it via something like XenApp so we can completely sandbox any card data to a single server.