Revolutionizing payment solutions: Yazara is now a PCI MPoC solution provider

As a modular standard that promotes flexibility for payment solution development, MPoC allows for additional functionality to be easily integrated and brings together mobile application development and payment acceptance.

Facilitating Integration:
broad support and categorization of solutions

The new standard supports various integration formats and hosting solutions, and the specification categorizes vendor solutions as:

MPoC Software Vendors Certified on 15.02.2024	MPoC Solution Providers Certified on 27.09.2024	MPoC A&M Service Providers Is not an independent service

MPoC Solutions must have at least one merchant-facing application, either developed as monolithic (i.e., developed without integration of a listed MPoC Software product and without integration of a listed MPoC A&M Service) or composite-based (i.e., developed via integration with a listed MPoC Software product and integrated with either a listed MPoC A&M service or a bespoke A&M Service). Yazara has successfully worked towards PCI certification as an MPoC Solutions provider for the White-Label product.

Innovating MPoC software development:
structure and certification

MPoC Software is broken down into two separate parts, the MPoC SDK and the MPoC Application, along with back-end software. An isolated MPoC SDK must provide for sufficient isolation of its memory space and be validated during the laboratory assessment that cleartext sensitive assets, such as account data or cryptographic keys, are not accessible by an MPoC Application that integrates that SDK.

Yazara has developed the first PCI MPoC-certified isolated SoftPOS SDK, which enables increased integrity, faster integrations, and lighter security assessments.

For processors and acquirers that already have a merchant-facing application, our isolated SDK Software Solution can be integrated into the merchant application with minimal evaluation (delta evaluation) required due to the nature of the isolated SDK. Likewise, our partners will also be able to leverage our White-Label Solution. In conjunction with our back-end infrastructure, we can provide a fully certified, end-to-end solution for both SDK and White-Label applications, providing the widest set of options, flexibility, and comprehensive configurations for our clients.

Any new implementations, as well as existing CPoC programs or CPoC + PIN waivers, will need to be MPoC certified going forward as the payment schemes will not be approving new projects or requiring migrations of older, non-compliant programs.