As a result of the 2013/2014 annual ePayment PCI audit, it has been
decided by the UBC PCI Working Committee with the recommendation of our
QSA to migrate all existing ePayment Virtual Terminal merchants from
their existing virtual terminal machines to terminal services thin client
machines.
The move to a thin client architecture would allow ePayment to complete
SAQ C-VT instead of SAQ C and would greatly reduce the number of PCI DSS
requirements from 139 to 73 (under version 3.0). The cost to maintain the thin
client architecture would be significantly lower than maintaining the current
workstation infrastructure in place. In addition, maintenance of all thin
clients could easily be managed by one central group thus potentially
eliminating security patching inconsistencies across the University.
We will be working closely with each Virtual Terminal merchant and their
IT partners to implement this change in the next couple of months.