At the Special Interest Group (SIG) session at this year’s PCI Community Meeting, a number of presentations were made regarding the potential PCI SIG topics that will be addressed in the coming year.
via This Year’s PCI SSC SIG Proposals « PCI Guru.
Category Archives: PCI
PCI Expands Encryption Standards to Mobile Payment Card Readers
Posted by compliancesoftware
on October 18, 2011
No comments
The (EMV/Contactless) World According To Visa « PCI Guru
Posted by compliancesoftware
on September 24, 2011
No comments
The PCI SSC stated that while Visa is not requiring merchants to file a ROC or AOC, the merchant still has to ensure that it is PCI DSS compliant. This means that the merchant still must go through the PCI compliance assessment process of a ROC or respective SAQ to ensure that their controls are functioning properly.
via The (EMV/Contactless) World According To Visa « PCI Guru.
PCI point-to-point encryption guidelines raise new questions
Posted by compliancesoftware
on September 15, 2011
No comments
The PCI Security Standards Council today is expected to issue guidelines on use of point-to-point encryption in protecting sensitive payment card data, but the narrow approach — which is focused on hardware — is raising questions.
via PCI point-to-point encryption guidelines raise new questions.
Q&A: Teresa Carlson of Amazon Web Services Discusses GovCloud | WHIR Web Hosting Industry News
Posted by compliancesoftware
on September 7, 2011
No comments
The new AWS GovCloud Region offers the same high level of security as other AWS Regions and supports existing AWS security controls and certifications such as FISMA, SAS-70 Type II, ISO 27001, FIPS 140-2 compliant end points, and PCI DSS Level 1
via Q&A: Teresa Carlson of Amazon Web Services Discusses GovCloud | WHIR Web Hosting Industry News.
Security flaw could expose credit card data – msnbc.com
Posted by compliancesoftware
on August 22, 2011
No comments
Sensational !!
If you have an account with Bank of America or Chase, two of the nation’s largest banks, a major security flaw has been exposed that could make your information vulnerable to an Internet crook – or even a nosy neighbor.
via Security flaw could expose credit card data – Business – ConsumerMan – msnbc.com.
Kicked Out Of “The Club” #PCI
Posted by compliancesoftware
on August 22, 2011
No comments
A Qualified Security Assessor Company (QSAC) has finally had their status revoked by the PCI SSC. In a little noticed release dated August 4, 2011, the PCI SSC announced through an FAQ that as of August 3, 2011, Chief Security Officers (CSO) of Scottsdale, Arizona is no longer a QSAC.
via Kicked Out Of “The Club” « PCI Guru.
#PCI group outlines technology to conceal sensitive account information
Posted by compliancesoftware
on August 12, 2011
No comments
The Payment Card Industry Security Standards Council today published guidelines aimed at helping merchants and others processing payment cards make effective use of what’s known as “tokenization” technologies to conceal sensitive account information.
via PCI group outlines technology to conceal sensitive account information.
Second Thoughts about Visa’s EMV program
Posted by compliancesoftware
on August 11, 2011
No comments
Despite the strong security benefits, Visa and the card issuers come out much farther ahead in this program when compared to the merchants, as generally seems to be the case when it comes to card industry events
via Second Thoughts about Visa’s EMV program.
Free tool to find Credit Card numbers for #PCI Comlpliance
Posted by compliancesoftware
on July 2, 2011
No comments
ControlCase Data Discovery enables large and small businesses and organizations to find credit and debit card information that could be stored in their systems in violation of the Payment Card Industry (PCI) Data Security Standard (DSS) Finding credit card data is one of the key and initial steps needed for compliance
via ControlCase Data Discovery » Downloads.
