New & Notable
PCI Data Security Standard News
July 21, 2014
Hailed by card brands as the cure to payment card fraud, Chip and PIN security technology will take years to deploy and has already proven vulnerable.
June 05, 2014
The Security Standards Council is soliciting topics for next year's PCI DSS special interest groups, despite delays that have held back two 2013 PCI SIGs.
May 13, 2014
During National Small Business Week, the PCI SSC will offer a free webcast Thursday to draw attention to the risk of small business data breaches.
April 01, 2014
It remains unclear whether Trustwave could be held liable for Target's massive 2013 data breach in future litigation.
PCI Data Security Standard Get Started
Bring yourself up to speed with our introductory content
A cardholder data environment or CDE is a computer system or networked group of IT systems that processes, stores and/or transmits cardholder data or sensitive payment authentication data, as well as any component that directly connects to or ... Continue Reading
Cardholder data (CD) refers to the primary account number (PAN) of a payment card belonging to a cardholder, along with any of the following data types: cardholder name, expiration date or service code (a three- or four-digit number coded onto the ... Continue Reading
The PCI DSS penetration testing requirement becomes more rigorous with the release of PCI 3.0. Expert Mike Chapple details the change. Continue Reading
Evaluate PCI Data Security Standard Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
Could open source security software solve PCI DSS compliance problems? Mike Chapple looks at how open source technologies can meet compliance needs. Continue Reading
Does a Web application security assessment termed 'compliance ready' seem too good to be true? Learn its role in an enterprise compliance program. Continue Reading
Enterprises fail to meet requirement 11 more than any other PCI DSS requirement. Expert Mike Chapple explains why and how firms can do better. Continue Reading
Manage PCI Data Security Standard
Learn to apply best practices and optimize your operations.
Learn how hiring the right PCI DSS-compliant service providers, especially payment services providers, can reduce your compliance burden. Continue Reading
How to evaluate whether PCI DSS is lowering credit card fraud and the risks associated with data breach disclosure. Continue Reading
Expert Mike Chapple offers insight on how to maintain PCI DSS compliance when outsourcing Web hosting to a PCI-compliant provider. Continue Reading
Problem Solve PCI Data Security Standard Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
PCI DSS compliance has little bearing on customer retention, so is it worth the effort? Mike Chapple explains why companies must comply with PCI DSS. Continue Reading
Employees play an important role in achieving and maintaining regulatory compliance, explains compliance expert Mike Chapple. Continue Reading
Expert Mike Chapple details the potential benefits for organizations that choose PCI SSC-approved point-to-point encryption products. Continue Reading