Banks can install only those swipe machines including the double swipe registers at supermarkets which are certified for PCI-DSS Payment Card Industry-Data Security Standards and PA-DSS Payment Applications -Data Security Standards. Merchants and aggregators, whose card acceptance machines are currently operational on Internet Protocol-based solutions, have to mandatorily go through PCI-DSS and PA-DSS certification.
Bank of America Corp. (>> Bank of America Corp) is throwing its muscle behind a credit-card technology aimed at cutting down on hassles U.S. cardholders may encounter when trying to make purchases while traveling abroad.
The Charlotte, N.C., bank said Monday it is including what are known as EMV chips in many of its consumer credit cards targeted at frequent travelers and high-net-worth customers.
At the Special Interest Group (SIG) session at this year’s PCI Community Meeting, a number of presentations were made regarding the potential PCI SIG topics that will be addressed in the coming year.
There are already hundreds of devices, such as the Square that clips on to a mobile phone, to enable remote mobile acceptance of credit cards, says Bob Russo, general manager, PCI Security Standards Council
The PCI SSC stated that while Visa is not requiring merchants to file a ROC or AOC, the merchant still has to ensure that it is PCI DSS compliant. This means that the merchant still must go through the PCI compliance assessment process of a ROC or respective SAQ to ensure that their controls are functioning properly.
The PCI Security Standards Council today is expected to issue guidelines on use of point-to-point encryption in protecting sensitive payment card data, but the narrow approach — which is focused on hardware — is raising questions.
The new AWS GovCloud Region offers the same high level of security as other AWS Regions and supports existing AWS security controls and certifications such as FISMA, SAS-70 Type II, ISO 27001, FIPS 140-2 compliant end points, and PCI DSS Level 1
If you have an account with Bank of America or Chase, two of the nation’s largest banks, a major security flaw has been exposed that could make your information vulnerable to an Internet crook – or even a nosy neighbor.
A Qualified Security Assessor Company (QSAC) has finally had their status revoked by the PCI SSC. In a little noticed release dated August 4, 2011, the PCI SSC announced through an FAQ that as of August 3, 2011, Chief Security Officers (CSO) of Scottsdale, Arizona is no longer a QSAC.
The Payment Card Industry Security Standards Council today published guidelines aimed at helping merchants and others processing payment cards make effective use of what’s known as “tokenization” technologies to conceal sensitive account information.