Request for Comments: PCI PIN Standard

Posted by PCI Security Standards Council on 21 Aug, 2017 in Point of Sale (POS) and ATM Security and PTS POI and QSA and Participation and Request for Comments
From 18 August to 18 September, PCI SSC stakeholders have the opportunity to review and provide feedback on the next draft of the PCI PIN Security Requirements and Testing Procedures.
read more

Associate QSA Program: Coming Soon

Posted by Laura K. Gray on 14 Aug, 2017 in Interview and PCI SSC and QSA
  In March 2017 the PCI SSC announced plans to develop an Associate QSA certification program, as pa... READ MORE

FAQ: Is Two-Step Authentication Acceptable for PCI DSS Requirement 8.3?

Posted by Laura K. Gray on 11 Aug, 2017 in Passwords and PCI DSS and Multi-Factor Authentication and FAQ and Remote Access
  Did you know that the Frequently Asked Questions (FAQ) resource on the PCI SSC website is updated ... READ MORE

PCI Special Interest Groups: Industry Collaboration at its Best

Posted by Laura K. Gray on 10 Aug, 2017 in Interview and SIGs and Participation
  Special Interest Groups (SIGs) are community-driven initiatives that focus on payment security cha... READ MORE

Navigating your Path to Payment Security with the Prioritized Approach to PCI DSS

Posted by Lauren Holloway on 8 Aug, 2017 in PCI DSS and Prioritized Approach
  Director of Data Security Standards Lauren Holloway discusses a roadmap organizations can use to m... READ MORE

What’s Next for PCI DSS?

Posted by Laura K. Gray on 3 Aug, 2017 in Interview and PCI DSS
  PCI Data Security Standard (PCI DSS) version 3.2 was published in April 2016. In this blog post we... READ MORE

Reducing Risk: SSL/Early TLS Mitigation and Migration

Posted by Laura K. Gray on 28 Jul, 2017 in eCommerce and Patching and Awareness and TLS/SSL and PCI DSS and Encryption
  Is your organization still using the SSL/early TLS protocols? Do you work with online and e-commer... READ MORE

The State of Payment Security in Brazil

Posted by Lindsay Goodspeed on 25 Jul, 2017 in Malware and Events and Community Meetings and Interview and ATM Security
  Leading up to the Latin America Forum in São Paulo, Brazil, Associate Regional Director Carlos Cae... READ MORE

FAQ: How does Encrypted Cardholder Data Impact PCI DSS Scope?

Posted by Laura K. Gray on 21 Jul, 2017 in Point to Point Encryption (P2PE) and PCI DSS and Scoping and Encryption and FAQ
  Did you know that the Frequently Asked Questions (FAQ) resource on the PCI SSC website is updated ... READ MORE

Demystifying the NESA

Posted by Laura K. Gray on 13 Jul, 2017 in Point to Point Encryption (P2PE) and Interview and Encryption and NESA
  Point-to-Point Encryption (P2PE) technology makes data unreadable so it has no value to criminals ... READ MORE

Mobile Payment Acceptance: A Look at PCI’s New Software-Based PIN-Entry Initiative

Posted by Laura K. Gray on 10 Jul, 2017 in Software and Interview and PTS POI and Mobile
  The PCI Security Standards Council has been discussing with stakeholders plans for a new security ... READ MORE

Are You Ready for 30 June 2018? Saying Goodbye to SSL/early TLS

Posted by Laura K. Gray on 30 Jun, 2017 in eCommerce and Patching and Awareness and TLS/SSL and PCI DSS and Encryption
  Is your organization still using the SSL/early TLS protocols? Do you work with online and e-commer... READ MORE