There's been plenty of complaints about the Payment Card Industry Data Security Standard (PCI DSS), since it went into effect in 2005. Next week, stakeholders, will have a chance to do something about it.
June 26, 2009
There's been plenty of complaints about the Payment Card Industry Data Security Standard (PCI DSS), since it went into effect in 2005. Next week, stakeholders, will have a chance to do something about it.The PCI Security Standards Council is seeking feedback on its payment security guidelines starting Wednesday July, 1 through November 1, when merchants, processors, financial institutions and other key stakeholders will "have the opportunity to provide detailed and actionable feedback in an effort to revise future editions of the Council's standards to improve payment data security," the council said in a statement.
So there you have it. If you think the standard focuses too much on "checklist security" or is too prescriptive, or even too vague, let them know. More information on how is available here.
The council will also hold two community meetings where proposed revisions will be discussed, one meeting is planned for Las Vegas (September) and the second will be held in Prague (November).
To make it easier to file feedback, the standards council will be distributing an electronic form to members next week. I suggest using it.
About the Author(s)
You May Also Like
Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024