PCI DSS 1.2 word cloud
Sunday, November 23rd, 2008 Posted in PCI DSS | No Comments »Thanks to a member of the PCI Facebook group who mentioned the website Wordle.net. This site allows you to create a tag/word cloud from any text or website. So here's the PCI DSS v1.2 showing the emphasis per word. You ...
PCI DSS Webinar on version 1.2
Thursday, November 13th, 2008 Posted in PCI DSS, PCI SSC | No Comments »Did you miss the PCI SSC's webinar on PCI DSS version 1.2 in November? Did you miss the Community Meeting in Orlando or Brussels? Do you still want to learn about the changes and updates to the PCI DSS standard? There ...
Visa sets global PCI DSS deadlines
Thursday, November 13th, 2008 Posted in Asia-Pacific, Card Brands, Compliance, Europe, Merchant, PCI DSS, Service Provider | 2 Comments »Only days after Visa Asia-Pacific announced compliance deadlines within their region, Visa Inc. announced global compliance deadlines for all regions. (Thanks to Danny for pointing this out.) The deadlines apply to all Visa regions globally and appear to be a natural ...
Cloud computing security and PCI
Monday, November 3rd, 2008 Posted in Compliance, PCI DSS | 7 Comments »A few days ago I began a conversation with a friend about cloud computing security, because I wanted to know the answers to some pressing questions. What I learned from this conversation is that (1) cloud computing is still in ...
Society of Payment Security Professionals Offers Video
Tuesday, September 23rd, 2008 Posted in Compliance, Legislation, PCI DSS, SPSP, Society of Payment Security Professionals | No Comments »The Society of Payment Security Professionals (SPSP) has updated the website to include streaming video. Members can watch short videos related to relevant topics such as Cardholder Data, FACTA, PCI DSS Requirements, PCI Scoping, and Risk. Speakers include ...
PCI 6.5 and the OWASP Top 10
Wednesday, July 2nd, 2008 Posted in PCI DSS, Web Applications | 5 Comments »In a recent post by Jeremiah Grossman, he comments on how the PCI DSS Requirement 6.5 mentions the OWASP Top 10 from 2004 when the latest version is from 2007. Yes, we all know that this to be true, as ...
PCI Adoption in Europe and Asia Pacific
Monday, June 30th, 2008 Posted in Asia-Pacific, Banking, Europe, Merchant, PCI DSS, PCI PIN | 6 Comments »Rob Newby blogs about the statistics and studies on the adoption of PCI compliance in Europe, based on the data points from a Register article with the same focus. The article states: European merchants are behind their US counterparts in getting ...
Definaitions, Roles and Responsibilities of PCI
Sunday, June 29th, 2008 Posted in Approved Scanning Vendor, Card Brands, Merchant, PCI DSS, PCI PIN, PCI SSC, QSA, pa-dss | No Comments »In the payments industry there exists the PCI guidelines. When we refer to PCI we are usually talking about the PCI DSS, although as anyone will tell you there is also the PCI PED, PCI PA-DSS, and others you should ...
Baby tests Two-Factor Authentication
Monday, June 16th, 2008 Posted in PCI DSS | No Comments »Yes, it's true, even babies can be PCI DSS compliant. It appears that having children means integrating them into your life and watching as they integrate into yours. A good friend of mine, Jacob, blogged about how his baby utilizes ...
PCI DSS Requirement 6.6
Sunday, June 15th, 2008 Posted in Merchant, PCI DSS, PCI SSC, Service Provider, Web Applications | 8 Comments »Many people know by now that PCI DSS Requirement 6.6 is going into effect (meaning you must be compliant) on June 30, 2008. What these same people are asking is, how does this apply to me and my business? And ...
