Resources
Society of Payment Security Professionals (SPSP)
Aegenis Group, Inc.
PCI Security Standards Council (SSC)
- PCI SSC website
- List of Qualified Security Assessors (QSA)
- List of Approved Scan Vendors (ASV)
- PCI DSS and supporting documents
- PA-DSS and supporting documents
Visa Resources:
- Visa USA CISP
- Visa Europe AIS
- Visa Canada AIS
- Visa Asia AIS
- PCI DSS Tools and FAQ
- Merchant Glossary of Terms
- Rules for Merchants [PDF]
- CVV2 Guide For Merchants [PDF]
- What Every Merchant Should Know About the New Account Data Compromise Recovery (ADCR) Process [PDF]
- Ten Smart Ways to Deal with an Account Compromise [PDF]
- Visa E-Commerce Merchants’ Guide to Risk Management [PDF]
- Visa Payment Application Best Practices (PABP or PA-DSS)
MasterCard Resources:
- MasterCard SDP
- Merchant Rules Manual [PDF]
- Member Service Provider Rules Manual [PDF]
American Express
- American Express Data Security Operating Policy (DSOP) Program
- DSOP for Merchants [PDF]
Discover Card
- Discover Card Information Security and Compliance (DISC) Program
JCB
Other Resources:
- Treasury Institute for Higher Education
- Oracle Applications 11i: Credit Cards and PCI Compliance Issues [PDF] [local copy]
- Cybertrust: Using BS7799 to Streamline PCI Certification [PDF]
- Insight Consulting: Using ISO 27001 for PCI DSS Compliance [PDF] [local copy]
- Microsoft: Securing the retail store
- OWASP: Web Application Security Standards
- SF-Bay InfraGard presentation on PCI DSS [PDF]
- 10 Myths about PCI Compliance [PDF]
Application Security
- AppSec 2006 Seattle SecurityPCIv2 [PDF]
- OWASP Top 10
![[del.icio.us]](http://images.del.icio.us/static/img/delicious.small.gif){kind=small}
