Lib de Veyra new Chairperson for PCI SSC
Monday, February 2nd, 2009 Posted in Card Brands, PCI SSC | 1 Comment »Today the PCI SSC named its new Chairperson for a term of the next 12 months. That person is JCB's own Lib de Veyra. I've known Lib for a number of years and have only positive things to say about ...
Discover creates merchant levels
Saturday, January 17th, 2009 Posted in Card Brands, Merchant | No Comments »Discover Network recently updated their DISC website and it was more than just a makeover. Discover updated their information with new merchant levels that conveniently match those of both Visa and MasterCard. Level 1 merchants are those processing 6 million or ...
Visa aligns global Service Provider levels
Thursday, November 13th, 2008 Posted in Asia-Pacific, Card Brands, Europe, Service Provider | No Comments »Visa recently announced global PCI DSS deadlines, along with a very nuanced point of service provider alignment. Currently, many of the Visa regions have aligned service provider levels, but not all. For example, in Asia-Pacific the service provider levels vary ...
Visa sets global PCI DSS deadlines
Thursday, November 13th, 2008 Posted in Asia-Pacific, Card Brands, Compliance, Europe, Merchant, PCI DSS, Service Provider | 2 Comments »Only days after Visa Asia-Pacific announced compliance deadlines within their region, Visa Inc. announced global compliance deadlines for all regions. (Thanks to Danny for pointing this out.) The deadlines apply to all Visa regions globally and appear to be a natural ...
iPhone to bring wave of wireless woes
Thursday, July 10th, 2008 Posted in Card Brands, PCI DSS, Wireless | 4 Comments »Tomorrow, like so many others around the world I'll be getting up early and waiting in line to purchase my new iPhone 3G when the stores open at 8 AM. And like so many other giddy users I'll head off ...
Definaitions, Roles and Responsibilities of PCI
Sunday, June 29th, 2008 Posted in Approved Scanning Vendor, Card Brands, Merchant, PCI DSS, PCI PIN, PCI SSC, QSA, pa-dss | 1 Comment »In the payments industry there exists the PCI guidelines. When we refer to PCI we are usually talking about the PCI DSS, although as anyone will tell you there is also the PCI PED, PCI PA-DSS, and others you should ...
PCI Compliance and Virtualization
Wednesday, May 21st, 2008 Posted in Card Brands, Compliance, PCI DSS, Uncategorized | 6 Comments »People have asked if Virtual Servers can be used in a PCI DSS compliant environment or if they violate requirement 2.2.1 which says, "Implement only one primary function per server". The answer is that virtual servers, virtual clusters, and even ...
Visa and MasterCard publish operating regulations online
Monday, May 19th, 2008 Posted in Card Brands | 2 Comments »Visa Inc. published their operating regulations (opregs) online. You can get the following: Visa International Visa U.S.A.: Volume 1 Visa U.S.A.: Volume 2 Visa Asia-Pacific Visa Canada Visa Central Europe, Middle East and Africa Visa Latin America and Caribbean Interlink MasterCard published their operating rules last year. You ...
Russian translation of PCI DSS and SAP
Thursday, May 8th, 2008 Posted in Card Brands, Europe, PCI DSS | 1 Comment »Maxim Emm from Infosec in Russia has translated the PCI DSS, PCI Security Audit Procedures, and Navigating the PCI DSS into Russian. This is an unofficial copy of these documents but could be helpful to people who would like this ...
Stagpliance? Yes, we do need PCI Education
Monday, March 3rd, 2008 Posted in Banking, Card Brands, Compliance, Merchant, PCI DSS | 15 Comments »One of the terms economists have been throwing around is that of 'stagflation'. This term describes an uncommon situation where both inflation is high and there is a stagnation in terms of production and employment. You see, inflation typically implies ...
