Security Management Strategies for the CIO
Email Alerts
-
The future of PCI DSS encryption requirements? Tokenization for PCI
Can tokenization help reduce the scope of PCI DSS? How does tokenization interact with PCI DSS encryption requirements? Learn more about this technology and whether it's right for your enterprise. Tip
-
MasterCard reverses PCI compliance requirement
New rules do not require a QSA onsite assessment for Level 2 merchants. News
-
Weighing the pros and cons of end-to-end encryption and tokenization
With PCI DSS and other compliance requirements, organizations are looking for surefire solutions to protect payment card and other sensitive data. Tokenization and end-to-end encryption have emerged as promising technologies, but as Dave Shackleford ... Tip
-
PCI DSS questions: Should full credit card numbers be on a receipt?
Are merchants that fall under PCI DSS allowed to print full credit card numbers on a receipt? Learn more in this response from security management expert David Mortman. Ask the Expert
-
PCI DSS compliance help: Using frameworks, technology to aid efforts
This mini-guide offers a variety of tips and information on how organizations can use several frameworks, technologies and standards, such as tokenization, ISO 27002, Secure Hashing Algorithm and other existing controls to help manage PCI DSS efforts... Learning Guide
-
Five things to do before your first PCI DSS compliance audit
Put these steps in motion before your organization's first PCI DSS compliance audit. Tip
-
Chip and PIN adoption serves lesson for U.S. payment industry
As payment processors offer plans for end-to-end encryption, the UK is finding success with chip and pin deployments. The U.S. payment industry should take notice, expert says. Column
-
Heartland CIO on end-to-end encryption, credit card tokenization
Steven Elefant, CIO of Princeton, NJ-based Heartland Payment Systems Inc., is leading development on the payment processor's E3 end-to-end encryption plan and new secure payment terminals. Elefant, who joined Heartland last year, said the payment pro... Interview
-
Heartland CIO is critical of First Data's credit card tokenization plan
First Data Corp. uses RSA software for tokenization, providing a possible threat vector for attackers, says Heartland CIO Steven Elefant. Article
-
PCI wireless guidelines translate to dollars for VARs
The PCI Security Standards Council has recently unveiled its PCI DSS Wireless Guidelines, a document that seeks to simplify how to make wireless networks compliant. Because of the complexity of both wireless security and PCI compliance, many customer... Tip