PCI at the House of Representatives

From Computerworld.

At a U.S. House of Representatives hearing yesterday, federal lawmakers

and representatives of the retail industry challenged the effectiveness

of the PCI rules, which are formally known as the Payment Card Industry Data Security Standard

(PCI DSS). They claimed that the standard, which was created by the

major credit card companies for use by all organizations that accept

credit and debit card transactions, is overly complex and has done

little to stop payment card data thefts and fraud.

I disagree that the standard is overly complex – in fact most of it is straightforward, common sense information security. The reason it has proved to be ineffective is because organisations focus on ticking the compliance boxes rather than taking the holistic approach to security that’s needed. There’s enough ranting on this subject elsewhere – the best being on Anton Chuvakin‘s blog – and I have little to add.

Join the conversation

1 comment

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

Zolpidem. Cheap zolpidem. Zolpidem tartrate. Zolpidem overnight. Zolpidem without prescription. Zolpidem zolpidem tartrate. Zolpidem.
Cancel

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close