AWS Security Blog

Spring 2024 PCI DSS and 3DS compliance packages available now

Amazon Web Services (AWS) is pleased to announce that three new AWS services have been added to the scope of our Payment Card Industry Data Security Standard (PCI DSS) and Payment Card Industry Three Domain Secure (PCI 3DS) certifications:

You can see the full list of services at AWS Services in Scope by Compliance Program.

The PCI DSS and 3DS compliance packages include two key components:

  • Attestation of Compliance – shows that AWS was successfully validated against the PCI DSS and 3DS standards.
  • AWS Responsibility Summary – provides guidance to help AWS customers understand their responsibility in developing and operating a highly secure environment on AWS for handling payment card data.

We were evaluated by Coalfire, a third-party Qualified Security Assessor. Customers can access the Attestation of Compliance report showing our PCI compliance status through AWS Artifact.

To learn more about our PCI program and other compliance and security programs, see the AWS Compliance Programs page. As always, we value your feedback and questions; reach out to the AWS Compliance team through the Compliance Support page.

If you have feedback about this post, submit comments in the Comments section below. If you have questions about this post, contact AWS Support.

Ramone Weyerhaeuser

Ramone Weyerhaeuser

Ramone is a Security Assurance Manager at AWS on the Global Audits team, managing the PCI compliance program. Ramone holds a master’s degree in information management and cybersecurity from the University of California, Berkeley.