Religion, Politics, and PCI
Thursday, July 2nd, 2009 Posted in PCI DSS | No Comments »As we approach Independence Day, I thought it fitting to post a blog on politics and religion as they are such an integral part of our country’s rich history. It has long been said that politics and religion should ...
PCI SSC to Accept Comments on Current Version of PCI DSS
Friday, June 26th, 2009 Posted in PCI DSS | No Comments »The Payment Card Industry Security Standards Council (PCI SSC) is inviting its Participating Organizations to provide "detailed and actionable" feedback about the PCI DSS. The move comes amid criticism from various sectors regarding the evolution of the Standard, but ...
Nevada Mandates PCI DSS
Monday, June 22nd, 2009 Posted in Compliance, Encryption, Government, Legislation, PCI DSS | No Comments »As we've been expecting for some time, states are beginning to take action with respect to mandating PCI DSS. The trend began with Minnesota's Plastic Card Security Act, which prohibited the storage of sensitive authentication data. While not ...
Cyber Thieves Making More than Drug Traffickers?
Monday, June 22nd, 2009 Posted in PCI DSS | 2 Comments »**It should be noted that the claim of cyber theft surpassing illegal drugs as a criminal enterprise has been vigorously debated. While it has been variously reported for some time, it has also been disputed by a number of respected ...
MasterCard Requires QSA for Level 1 and 2 Merchants
Thursday, June 18th, 2009 Posted in PCI DSS | 16 Comments »MasterCard recently announced changes to their Site Data Protection program. The updates now require Level 1 merchants and level 2 merchants to engage a Qualified Security Assessor (QSA) to validate compliance with the PCI DSS. Additionally, MasterCard redefined the Service ...
August CPISM/A Training Dates Announced
Wednesday, June 10th, 2009 Posted in PCI DSS | No Comments »The Society of Payment Security Professionals is pleased to announce that we have finalized dates fro a new CPISM/A Training and Exam Seminar. The event will be held at the StayBridge Suites Denver International Airport in Denver, Colorado. ...
Visa leads the way! End to End Encryption
Monday, June 8th, 2009 Posted in PCI DSS | 6 Comments »Recently, I wrote a pretty critical blog post about the ongoing debate within the industry related to end to end encryption. Today I received an article in which Gartner's Avivah Litan wrote a great summary of the Visa Global Security ...
Lawsuit over CardSystems breach
Sunday, May 31st, 2009 Posted in PCI DSS | 6 Comments »This month, Digital Transactions published a story in which it is announced that a major acquirer is now suing a former QSA for the CardSystems breach. As stated in the document: "The suit calls the Savvis inspection report “false and misleading,” ...
End to End Encryption & Tokenization…is this really a debate?
Tuesday, May 26th, 2009 Posted in PCI DSS | 3 Comments »Added Amusing story about end to end. Read: The Inoculation Effect; from Marines to End to End Encryption I just finished reading an article in the Greensheet related to end to end encryption. While the article does a very good job at showing ...
Memorial Weekend Post
Saturday, May 23rd, 2009 Posted in PCI DSS | No Comments »Regardless of political affiliations or feelings on the various wars and other actions through the years, I want to encourage everyone to take a moment sometime during the Memorial day weekend to remember those men and women who have given ...
