AWS Security Blog

Spring 2024 PCI DSS and 3DS compliance packages available now

Amazon Web Services (AWS) is pleased to announce that three new AWS services have been added to the scope of our Payment Card Industry Data Security Standard (PCI DSS) and Payment Card Industry Three Domain Secure (PCI 3DS) certifications:

You can see the full list of services at AWS Services in Scope by Compliance Program.

The PCI DSS and 3DS compliance packages include two key components:

  • Attestation of Compliance – shows that AWS was successfully validated against the PCI DSS and 3DS standards.
  • AWS Responsibility Summary – provides guidance to help AWS customers understand their responsibility in developing and operating a highly secure environment on AWS for handling payment card data.

We were evaluated by Coalfire, a third-party Qualified Security Assessor. Customers can access the Attestation of Compliance report showing our PCI compliance status through AWS Artifact.

To learn more about our PCI program and other compliance and security programs, see the AWS Compliance Programs page. As always, we value your feedback and questions; reach out to the AWS Compliance team through the Compliance Support page.

If you have feedback about this post, submit comments in the Comments section below. If you have questions about this post, contact AWS Support.