Security Management Strategies for the CIO
Email Alerts
-
Heartland CIO is critical of First Data's credit card tokenization plan
First Data Corp. uses RSA software for tokenization, providing a possible threat vector for attackers, says Heartland CIO Steven Elefant. Article
-
Heartland CIO on end-to-end encryption, credit card tokenization
Steven Elefant, CIO of Princeton, NJ-based Heartland Payment Systems Inc., is leading development on the payment processor's E3 end-to-end encryption plan and new secure payment terminals. Elefant, who joined Heartland last year, said the payment pro... Interview
-
PCI wireless guidelines translate to dollars for VARs
The PCI Security Standards Council has recently unveiled its PCI DSS Wireless Guidelines, a document that seeks to simplify how to make wireless networks compliant. Because of the complexity of both wireless security and PCI compliance, many customer... Tip
-
Heartland CIO on PCI, E3 project
Heartland Payment Systems CIO Steve Elefant talks about the processor's new E3 security processes, end-to-end encryption, deployment and adoption issues. News
-
Wireless network guidelines for PCI DSS compliance
The PCI Security Standards Council recently released additional guidance for WLANs, but do they make the compliance process easier? Contributor Ben Rothke examines the key points of the new guidelines and offers additional advice for organizations wi... Tip
-
Visa probes tokens, encryption for PCI card data protection
Visa issued payment industry best practices that outline the use of encryption and tokenization to protect credit card data. Article
-
Feds push cybersecurity jobs, PCI DSS changes ahead.
The federal government plans to fill cybersecurity jobs, the payment industry is studying PCI virtualization best practices and Microsoft offers free endpoint protection software. Column
-
PCI DSS: Writing an information security policy
The final set of PCI requirements relates to maintaining a security policy, and also addresses awareness training, personnel screening and managing service provider relationships. Tip
-
Voltage, RSA spar over tokenization, data protection
Voltage cites performance issues and the creation of a repository of cardholder data an attractive target for attackers. RSA calls Voltage's claims unfounded. Article
-
Experts, vendors search for PCI's holy grail
The First Data-RSA partnership is pitted against the Heartland-Voltage E3 project in the payment industry race for securing transactions. News