Articles With Just Good Information

The PCI DSS Standards For Information Security

The Standards for information security in the modern, fast-paced business environment will continue to grow and evolve as the tactics and techniques that hackers and other criminals use also evolve. The PCI DSS (Payment Card Industry Data Security Standard) was created by the five major credit card companies to be a tool and a standard by which merchants can employ and maintain a secure business environment for their customers.

The PCI DSS is a set of 12 requirements that any merchant that processes, stores, or transmits sensitive credit card data must adhere to. These requirements are not all easy, nor are they necessarily cheap to implement. They are, however, very necessary.

So what, exactly, are the information security requirements of the PCI DSS? Some are more simple than others, some are (or should be) common sense, others are more complex and, because of their less-than obvious nature, are included specifically because they get overlooked by merchants and targeted by hackers.

We'll begin with the more obvious requirements. The first and second requirements are about building and maintaining a secure network. This includes installing a firewall and keeping it up-to-date, and changing any default vendor-supplied passwords that may have come with your system. Firewalls are important components on any system for information security as they give you control over the traffic that can get into or out of your system. And most vendor-supplied passwords have already made it into the hacker community and are unsafe to keep around.

The next two requirements of the PCI DSS involve taking the necessary steps to protect cardholder data. This begins with simple steps like keeping stored data to a bare minimum, and can also include making sure that you keep all your own passwords encrypted, and all physical access limited to specific people. It gets a little more complex when you start encrypting all transmissions of credit card data.

Again, some of these requirements seem obvious, but many merchants have been caught without implementing this step sufficiently. The recent decision in the famous TJX case, in fact, concluded that the company did not do everything they could have and/or should have done to protect cardholder data. This included storing and transmitting unencrypted data. What's the lesson here? Anyone can get caught not doing everything necessary for their customers' safety.

Requirements five and six of the PCI DSS deal with maintaining a vulnerability management program. This includes using and regularly updating anti-virus programs - because not all threats come from hackers. Any programs or applications you develop must also be secure. This means that you must use all patches and updates that are necessary to remain current with all the new technologies.

The next steps are about implementing strong access control measures. This includes limiting access to carholder data to business need-to-know, assigning unique Ids to everyone who has computer access and restricting physical access to cardholder data. This is important in information security for the simple reason that a lot of security can be added by knowing exactly who can see th info. And if there ever is a problem, tracing the source of the problem can be a much more efficient process.

The PCI DSS also requires that a merchant regularly tests and monitors their systems. Why? Because simple implementation isn't enough. Doing something once and expecting it to be self-sustaining isn't going to work. Regular testing is the only way to ensure that you will find any problems in the system before any criminals do.

The twelfth requirement of the PCI DSS states that you must maintain a policy on information security. What this means is that it is your responsibility to make sure each part of the company understands their own responsibility toward the PCI DSS.

It's about knowledge and information. And in the end, this knowledge can help you provide your customers with a safe environment in which to conduct electronic transactions.

Andy Eliason is a writer at Main10, Inc. If you'd like to learn more about the PCI DSS visit http://www.braintreepaymentsolutions.com/pci-compliance/p/3/ or http://www.braintreepaymentsolutions.com/

Other Article Sites

findabook.com  moneycd.info  a-mortgage.info   about-lemon-laws.info  aboutstudentloans.info
all-about-publishing.info  auctions-articles.info  bestcollege-university.com  bestispconnection.com
biblefolder.com  blogger-website.com  books-used.info  brokers-guide.info  buywindows.info  cable-dsl.info
career-miner.com  carpel-tunnel.info  cashinaflash.info  cashloanreviews.info  casinobell.com  chat-house.info
clearmycredit.info  collegeloantips.info  crones.info  depression-articles.info   dirnic.net  dishguides.info
divers-below.com  expodog.info   financewizz.com  fire-insurance.info  getgood.info  handleit.net   it-idea.info
health-supplies.info  hosting-right.com  insidealert.com  insurance-facts.info  jobs-employment.info
justgood.info  lookgold.net   lowcost-travel.info  money-source.info  myhostzone.info  numisblog.com
peoplesearchfinder.info  pr-articles.info  realeas.com   refinancing-guides.info  spyware-remove.info
telelot.info  the-law.info   toppaid.info  travel-deals.info  travelcorrect.com  wedding-guide-site.com
your-blog.info  your-credit.info

MORE ARTICLES:

Outskirts Press Announces the Publication of 'Success: It Just Ain't That Hard, Y'all!'; A Small Yet Powerful New Book Shows How Simple Truths Can
At the core of author Steve Templeton's philosophy is the statement "You can be, do and have anything you want in life!" As a man who has been a successful dishwasher, soda jerk, short order cook, delivery driver, lifeguard, welder, headhunter, U.S. Marine, Black Belt instructor, supervisor at a Fortune 500 company, locksmith, janitor, professional pilot, private investigator, salesman, multiple-business owner, life coach, public speaker, investor, motivational trainer and author, he is a living testament to the fact that a person can be successful at any endeavor. The difference is that now Templeton possesses a passion for teaching others how to do so as well.

Haines Introduces a New, Faster Version of Real Property Information Online
Haines and Company, publisher of the Criss+Cross directories, has introduced a new version of its internet product that gives users faster access to updated details about any residential or business property in their market.

Outskirts Press Announces Joe Curtin, the Latest Highly-Anticipated Workplace Culture Book from Ellicott City, MD Author James T. Terrill
Outskirts Press, Inc. has published Joe Curtin: Memoirs of a Construction Stiff by James T. Terrill, which is the author's most recent book to date. The 6 x 9 Paperback in the Workplace Culture category is available worldwide on book retailer websites such as Amazon and Barnes & Noble for a suggested retail price of $9.95. The webpage at www.outskirtspress.com/jtterrill was launched simultaneously with the book's publication.

Dear Max Messmer -- Why Your VideoCV Survey Highlights the Wrong Half of the News
Let's give jobseekers some good news and focus on the positive. In actuality, 26 of the large organizations surveyed accept video CVs, a strong number given the relative newness along with corporate bandwidth and firewall constraints. In today's world of facebook, Google and LinkedIn it pays to choose the resume media that best highlights your talents.

Florida's First Law School Chronicled in New Book
Carolina Academic Press has published a compelling account of the history of Florida's first law school, Stetson University College of Law.

Inventing Your Own Book-Selling Strategy
Sun Tzu once said, "Strategy without tactics is the slowest route to victory. Tactics without strategy is the noise before defeat."

Outskirts Press Announces The Second Coming of Christ Jesus, the Latest Highly Anticipated Christian - Inspirational Book from Three Rivers, MI, Autho
Outskirts Press, Inc. has published The Second Coming of Christ Jesus by Michael Blacker, which is the author's most recent book to date. The 5.5 x 8.5 paperback in the Christian - Inspirational category is available worldwide on book retailer websites such as Amazon and Barnes & Noble for a suggested retail price of $12.95. The webpage at www.outskirtspress.com/MichaelBlacker was launched simultaneously with the book's publication.

11th International Conference on Business Information Systems (BIS 2008) - Business Processes and Social Contexts - Reaching Beyond the Enterprise
The conference will be held in Innsbruck, Austria, May, 5 ? 7, 2008 and will be jointly organized by Poznan University of Economics and University of Innsbruck.

San Diego Family Fun
San Diego is famous for its history and nightlife, but there's plenty to keep the kids happy too. From zoos and theme parks to endless beaches and year-round sunshine, you'll find enough San Diego family fun to please everyone at vacation time.

How To Write A Keyword Article
There is a lot of talk these days about using keyword articles to attract visitors to a website and with the growing use of article marketing, there seems to be some benefit to using this method in a company's marketing plan. There is also some confusion about the use of keywords as well as what they are and what they mean to a website owner.

Book Review for The Margaret Ellen, A Karen Cobia Mystery by RC Burdick
I've discovered a new favorite author, and his name is RC Burdick.The Margaret Ellen is an ocean-drenched mystery, filled with vibrant characters, palpable sea breezes, and spine-tingling suspense.

Holistic Management International COO Reacts to Recent Guardian Article, ?Eat Your Greens?
Holistic Management International?s COO Peter Holter reacted today to a recent article in The Guardian, ?Eat Your Greens,? which suggested that people should seriously consider shifting to a vegan diet because the global livestock sector generates more greenhouse gas emissions than all forms of transport. ?While I would never want to discourage anyone from switching to a vegan diet, the problem with livestock is not so much their emissions per se, but how the animals are managed under our industrialized feeding system,? Holter said.

Newbies Guide to Writing and Submitting Ezine Articles
How many times have you read the following? If you want to expand your home based business and build an online reputation then all you need to do is write and submit ezine articles. Sounds simple.

Outskirts Press announces The Guaranteed Profit System, the latest highly-anticipated Business - General book from Arlington, TX author Lynn Fife.
Outskirts Press, Inc. has published The Guaranteed Profit System: A quick and easy guide to having a successful business by Lynn Fife, which is the author's most recent book to date. The 8.25 x 11 Paperback in the Business - General category is available worldwide on book retailer websites such as Amazon and Barnes & Noble for a suggested retail price of $39.95. The webpage at www.outskirtspress.com/theguaranteedprofitsystem was launched simultaneously with the book's publication.