Archive for the ‘pci dss’ Category

PCI DSS Law and State of Nevada

Image by purpleslog via Flickr 45 States followed California when they introduced “SB1386”, the Security Breach Information Act, which has specific and restrictive privacy breach reporting requirements. Similarly to the SB1386 Law, California, Massachusetts & Texas are already looking at making PCI DSS Law and history tells us that when California moves, everyone else follows! […]

Comments (4)

Credit Card Primary Account Number and Encryption

50 Ways to Protect Your Identity and Your Credit: Everything You Need to Know About Identity Theft, Credit Cards, Credit Repair, and Credit Reports Primary Account Number (PAN) is a “12-digit or 19-digit numeric code embossed on the face side of a bank card, and also encoded in the Magnetic Stripe. The primary account number […]

Comments (10)

Credit card authorization process weakness

Image via Wikipedia Credit Repair Kit For Dummies (For Dummies (Business & Personal Finance)) Credit card authorization sequence: 1) Creditholder swipes card at merchant. A request is sent to merchants bank 2) Merchants bank “asks” processor to determine the cardholder bank 3) Processing network finds cardholders bank and request approval for purchase 4) Cardholders bank […]

Comments (13)

PCI compliance is essential and why you have to

During this down turn economy organized cyber crime is a booming underground business these days. Most of the security expert and FBI agree that cybercrimes are on the rise and pose a biggest threat to US vital infrastructure. Cybercriminals are thieves in cyberspace who will swipe the sensitive data and sell to other criminals in […]

Comments (3)

PCI DSS Misconceptions and Facts

M1 – We are relatively small company so we don’t have to worry about PCI compliance F1 – The PCI DSS must be met by all organizations that transmit, process or store payment card data M2 – PCI DSS is either a regulation or a standard F2 – It‘s a neither a standard nor a […]

Comments (10)

PCI DSS significance and contractual agreement

The PCI DSS (Payment Card Industry & Data Security Standard) was established by credit card companies to create a unified security standard for handling credit card information.  The retail service industry now understands the strategic significance of PCI DSS compliance, which was demonstrated when TJX announced that their system was compromised for more than 17 […]

Comments (2)