September 17, 2024

PIN Security Enhancements

Effective Tuesday, 9/24, Lithic will begin enforcing stricter security measures relating to cards which are secured by PINs. After this change, the PIN blocking security methodology (outlined in the API Guide here) will be fully enforced.

Lithic has conducted a comprehensive backtest of all card transactions over the past six months to identify programs which would have been impacted by this change. Every program identified during the backtest has been individually contacted with specific details. If your program has not been contacted, our data shows that zero of your program's cards would have entered a PIN state of BLOCKED and your cardholders are unlikely to experience a disruption from this enforcement. Regardless, Lithic still strongly recommends that all programs which issue PIN cards review the API Guide on PIN blocking to ensure your program is fully prepared for this security enhancement.

New Transaction Detailed Result Permitted Value

Effective Tuesday, 9/24, a new permitted value of PIN_BLOCKED may be returned for events[*].detailed_results. This result will occur when a cardholder attempts a PIN transaction with a card which has its PIN_STATUS set to BLOCKED. To learn about what to do when a PIN status becomes blocked, please see the API Guide.

The full list of permitted transaction and event result values can be found in the Transaction documentation here.

If you have any questions or concerns, please contact us via the HELP link in your Lithic Dashboard.

The Lithic changelog has an RSS feed! To monitor for new update announcements, subscribe with your preferred RSS reader.