PCI Struggles to Keep Up with Industry Advances

Adams, John
November 2010
Bank Technology News;Nov2010, Vol. 23 Issue 11, p10
Trade Publication
The article discusses the PCI Security Standards Council LLC rules for point-to-point encryption and tokenization technology in the payments industry. It says that the council issued several guidelines on the said technology including one in August 2010 and one in October 2010. It mentions the issue on the uncertainty of reduced audit scope for retailers who will implement point-to-point or tokenization. It adds that the PCI Council is expected to create additional protective measures in 2011.


Related Articles

  • PCI Security Council Sets Encryption Rules. Heun, David // ISO & Agent Weekly;9/22/2011, Vol. 7 Issue 35, p1 

    The article reports on the guidelines issued by the PCI Security Standards Council LLC for merchants planning to use advance data encryption as a credit card security measure in the U.S. Bob Russo, general manager of the PCI Council, emphasized that the guidelines for advanced data encryption do...

  • News Briefs.  // ISO & Agent Weekly;9/29/2011, Vol. 7 Issue 36, p17 

    The article offers business-related news briefs in the U.S. The record attendance at the annual PCI Security Standards Council LLC North American community meeting is driven by the rise of card data security measures and mobile payments. Google Inc. emphasizes that it will license the payment...

  • PCI COUNCIL RELEASES PAYMENT APPLICATION DATA SECURITY.  // CardLine;4/25/2008, Vol. 8 Issue 17, p7 

    The article reports on the release of the Payment Application Data Security Standard by PCI Security Standards Council. According to the council, the aim of the standard is to assist software vendors in the development of secure payment applications that do not store sensitive information. It...

  • PCI Rules For Encryption Still In Transition. Fitzgerald, Kate // ISO & Agent Weekly;9/29/2011, Vol. 7 Issue 36, p1 

    The article focuses on the initiatives PCI Security Standards Council LLC for securing payment card data in the U.S. through data encryption. It creates testing procedures to validate advanced data encryption products. It offers assistance to qualified security assessors for validating the...

  • Square Rift with VeriFone Reflects Standards Issue. Johnson, Andrew // American Banker;3/11/2011, Vol. 176 Issue F310, p9 

    The article reports on the issue of common technical standards for mobile acceptance devices such as credit card readers. The lack of a uniform characteristic on which to evaluate encryption services and the PCI Security Standards Council's reluctance to certify mobile payment applications'...

  • Canadian Commissioners Fault TJX For Breach.  // ISO & Agent Weekly;9/28/2007, Vol. 3 Issue 31, p1 

    The article reports on the inadequate security safeguards of TJX Cos. Inc. causing a data breach in January 2007 in its headquarters in Canada. Investigators found out that the company did not properly handle intrusion risk, failed to act promptly in converting a weak encryption standard to a...

  • Supporting PCI DSS 3.0 Compliance With COBIT. Beissel, Stefan // COBIT Focus;Jan2014, Vol. 1, p14 

    The article focuses on the use of COBIT® 5 to support the compliance to the Payment Card Industry Data Security Standard 3.0 (PCI DSS 3.0), aimed at improving the security of cardholder that is required when cardholder data or authentication data are being stored processed or transmitted. It...

  • SSH COMMUNICATIONS SECURITY JOINS PCI SECURITY STANDARDS ORG.  // Computer Security Update;Jan2008, Vol. 9 Issue 1, p4 

    The article reports on the union of SSH Communications Security Corporation with the PCI Security Standards Council as new member of the organization aiming to protect data in information processes. SSH Communications Security Corporation provides business solutions and end-to-end communication...

  • Europe Turns PCI Compliant. Fitzgerald, Kate // American Banker;9/29/2011, Vol. 176 Issue 151, p9 

    The article discusses the payment card industry (PCI) data security standard maintained by the PCI Security Standards Council and PCI compliance among companies in Europe.


Read the Article


Sorry, but this item is not currently available from your library.

Try another library?
Sign out of this library

Other Topics