Secure Payments, PCI DSS, Regulatory Compliance Blog

Archive for the ‘Europe’ Category

Web application vulnerabilities at large

Monday, November 24th, 2008 Posted in Europe, PCI DSS, Web Applications | 1 Comment »

Improperly coded web applications continue to plague the world, not least of which the payments service space.  Here are a few important clarifications about PCI DSS Requirement 6. Developers must be trained in secure coding practices.  They should understand vulnerabilities their ...

Visa aligns global Service Provider levels

Thursday, November 13th, 2008 Posted in Asia-Pacific, Card Brands, Europe, Service Provider | No Comments »

Visa recently announced global PCI DSS deadlines, along with a very nuanced point of service provider alignment.  Currently, many of the Visa regions have aligned service provider levels, but not all.  For example, in Asia-Pacific the service provider levels vary ...

Visa sets global PCI DSS deadlines

Thursday, November 13th, 2008 Posted in Asia-Pacific, Card Brands, Compliance, Europe, Merchant, PCI DSS, Service Provider | 2 Comments »

Only days after Visa Asia-Pacific announced compliance deadlines within their region, Visa Inc. announced global compliance deadlines for all regions. (Thanks to Danny for pointing this out.) The deadlines apply to all Visa regions globally and appear to be a natural ...

PCI vs The Law

Friday, September 26th, 2008 Posted in Europe, Legislation | No Comments »

Since the emergance of the PCI DSS there have been many questions regarding how requirements should be addressed with respect to state, national, or local laws.  For example, in several European countries it may be illegal for you to (1) ...

PCI Survey

Wednesday, July 30th, 2008 Posted in Compliance, Europe | 1 Comment »

If you are not already subscribed to Rob Newby's blog then maybe today is the day you do.  His is one of the few that is syndicated via the Society of Payment Security Professionals.  He has put online a survey ...

PCI Adoption in Europe and Asia Pacific

Monday, June 30th, 2008 Posted in Asia-Pacific, Banking, Europe, Merchant, PCI DSS, PCI PIN | 6 Comments »

Rob Newby blogs about the statistics and studies on the adoption of PCI compliance in Europe, based on the data points from a Register article with the same focus.  The article states: European merchants are behind their US counterparts in getting ...

Russian translation of PCI DSS and SAP

Thursday, May 8th, 2008 Posted in Card Brands, Europe, PCI DSS | 1 Comment »

Maxim Emm from Infosec in Russia has translated the PCI DSS, PCI Security Audit Procedures, and Navigating the PCI DSS into Russian.  This is an unofficial copy of these documents but could be helpful to people who would like this ...

Traveling to a city near you

Saturday, April 19th, 2008 Posted in Conferences, Europe, PCI DSS | 3 Comments »

Only if that city is in Poland.  I'm about to hop on a flight to Warsaw, Poland (check my Dopplr) to teach several classes on PCI.  We normally do about 5-10 global countries a year in addition to the numerous ...

(Unofficial) PCI Security Audit Procedures v1.1 in Russian

Friday, February 8th, 2008 Posted in Europe, PCI DSS | 2 Comments »

Although the PCI DSS - Security Audit Procedures (SAP) v1.1 is published in many languages, Russian is not one of them.  That is, until now. While teaching a PCI class in Europe last year I remember speaking with someone from a ...

PCI Europe Conference 2007

Thursday, December 6th, 2007 Posted in Conferences, Europe | 3 Comments »

The PCI Europe conference is happening for the first time in 2007.  I am not there but know some friends who are attending.  I'm curious to hear about it so please post content in the comments.  I haven't seen any ...
« Previous Entries