[quote name=‘marlanbrando’]Hello,
I am currently considering CS-Cart. From Cs-Cart’s page, [url]https://www.cs-cart.com/pci-compliance.html[/url], it indicates CS-Cart is PCI compliant.
Does anyone knows if CS-Cart actually received the official PA-DSS validation from the PCI Security Standards Council? I believe, not positive, that all merchants are required to use e-commerce SW that has PA-DSS validation by July 2010. So I rather be set up with one that is validated if I have that option so I don’t have to go through hoopla before July 2010 again.
Thanks in advance for any help you can offer.[/QUOTE]
We are also considering CS-Cart.
But the answer is currently NO. Unfortunately there are not a lot of choices and the choices out there have their own issues.
Here is the link and list direct from PCI[URL=“https://www.pcisecuritystandards.org/security_standards/vpa/vpa_approval_list.html?mn=&vn=0&ap=10&rdSort=1&rdSortOrder=1&rg=0”]https://www.pcisecuritystandards.org/security_standards/vpa/vpa_approval_list.html?mn=&vn=0&ap=10&rdSort=1&rdSortOrder=1&rg=0[/URL]…
Application Type: Pick Shopping Cart
13 Vendors/16 Applications
Vendor Name WebPage URL Payment Application Version
AbleCommerce www.ablecommerce.com AbleCommerce 7
Budgetext Corporation www.budgetext.com WebMatePayment 1
CASHNet www.cashnet.com CASHNet 3.0G11 Build P004
Discovery Productions www.aspdotnetstorefront.com AspDotNetStorefront 8
Early Impact, Inc. www.earlyimpact.com ProductCart 4
eOne Group, a Division of Micros-Retail www.micros-retail.com eOneCommerce 9
Escalate www.escalate.com Escalate e-Commerce 9.0.3
Escalate http://www.escalate.com Escalate e-Commerce 10.0.2
Horizon Software International, LLC Order Express 3
Ignify, Inc. www.ignify.com Ignify eCommerce 4
Mercantec www.mercantec.com PowerCommerce 2005
ShopSite www.shopsite.com ShopSite 10
TMA Resources www.tmaresources.com Personify 7.1.1
TMA Resources www.tmaresources.com TIMSS 6.5.1
Ungerboeck www.ungerboeck.com Ungerboeck 18.1
Ungerboeck www.ungerboeck.com Ungerboeck Software 19.1/20.1
Hi, I’m new here on the forums and I have a site hat currently has over 4,000 products. I’m doing tons of research because we want to move it away from our current hosted shopping cart solution.
This PCI-DSS stuff is really important and yet it’s hard to find much information on it. Developers don’t seem to be taking this seriously.
From what I am reading, I really like what I see about cs cart, but this one point is holding me back and should others who want to process credit cards on their website.
FYI - Check CS-Cart’s roadmap:
[url]https://www.cs-cart.com/roadmap.html[/url]
They are working on features for PCI compliance. I’m not sure if they have addressed whether or not they are going to apply for validation.
Also:
[quote name=‘ogia’]FYI - Check CS-Cart’s roadmap:
[url]https://www.cs-cart.com/roadmap.html[/url]
They are working on features for PCI compliance. I’m not sure if they have addressed whether or not they are going to apply for validation.
:[/QUOTE]
They have already delivered PCI compliance features in 2.0.12 (e.g, the new password/admin.php warnings and the new Security tab in Settings).
I also wonder if they have considered PA-DSS validation. They should because other carts are doing so (including, supposedly, X-Cart). They will be a competitive advantage for those carts who validate.
Bob
any updates on this? (PA-DSS)
This could be a major issue.
The certification process cannot be done overnight, so if this is not already in process, there could be some major problems here.
I don’t think they are going to be DSS certified. They may offer hooks to other gateways that are DSS certified but the cart itself will not be.
Or so I thought I heard. not 100% sure, so this is NOT GOSPEL!
Was hoping someone from CS-Cart would address this, but apparently its not important to them at the present time. TOMORROW IS the deadline for PA-DSS compliance.
Other forums are buzzing with this topic, scrambling for a solution, and other carts have already been certified for the compliance, yet nothing is being mentioned here.
PCI compliant is not the same as PA-DSS, so basically all these carts are going to be noncompliant as of tomorrow, unless everyone wants to just switch over to paypal and google checkout, or authorize.net SIM thus turning away about 75% of credit card users when they are taken to another URL.
Basically it tells me we’re all on our own to get certified… and of course thats not financially possible… the certification cost is huge, and takes many months to get certified, even if you figured out how right away.
Doesn’t this concern anyone in the slightest?
Just looked at the certified vendor list and its not very long. Ablecommerce is the only one i recognize.
?
so I guess maybe most carts will not be compliant by tomorrow.?
[url]https://www.pcisecuritystandards.org/security_standards/vpa/vpa_approval_list.html?mn=&tab=0&vn=0&an=0&ap=10&sortfield=0&sortdir=0[/url]
[quote name=‘timst’]Was hoping someone from CS-Cart would address this, but apparently its not important to them at the present time. TOMORROW IS the deadline for PA-DSS compliance.
Other forums are buzzing with this topic, scrambling for a solution, and other carts have already been certified for the compliance, yet nothing is being mentioned here. …
[/QUOTE]
So can you point to all of these other shopping carts that have now become PA-DSS compliant? I just checked too and there are still only a handful of 14 vendors and 18 applications.
Hi,
Please refer to this thread to continue the discussion - [url]http://forum.cs-cart.com/showthread.php?p=88278#post88278[/url]