Showing posts tagged with 'Technology'

November 26, 2009

Clearing the Mystery of PCI Compliance (Part 4)

Posted by 2Checkout Category Icon2Checkout Category IconTechnology

Last week we looked at Anti-Virus(AV) software. This provides us with a reasonable level of protection so that we can protect our customers’ information. However, new threats are always being released and we need to make sure we keep updated on the latest virus or new security threat. We also need to have a place to test out software and hardware updates, as well as a place to try new shopping carts, or new pieces of code that will make our...

Read more..

November 20, 2009

Clearing the Mystery of PCI Compliance (Part 3)

Posted by 2Checkout Category Icon2Checkout Category IconTechnology

We are at the half-way mark in becoming PCI Compliant. We took a little break for Fraud Awareness Week and now we are ready to “Maintain a Vulnerability Management System”. Our previous efforts have been focused on Building and Maintaining a Secure Network and Protecting Cardholder Data. We now have a firewall, clear policies regarding the type of information we will store, and the length of time we will store it. We even have encryption software...

Read more..

October 30, 2009

Clearing the Mystery of PCI Compliance (Part 2)

Posted by 2Checkout Category Icon2Checkout Category IconTechnology

Last week I wrote an article detailing how to comply with the first two PCI DSS Standards. In this article, I will show what is involved in complying with the two requirements in the “Protect Cardholder Data” standard.

Requirement 3: Protect stored cardholder data

Requirement 4: Encrypt transmission of cardholder data across open, public networks

We have provided a secure network to collect and store our customer’s...

Read more..

October 23, 2009

Clearing the Mystery of PCI Compliance (Part 1)

Posted by 2Checkout Category Icon2Checkout Category IconTechnology

This is the first is a twelve-part series detailing what is involved with PCI compliance. Earlier, Warner gave a very good overview of PCI DSS compliance.

“PCI DSS (Payment Card Industry Data Security Standard) is a security standard that applies to companies handling credit card numbers. The PCI level of enforcement differs based on the volume of transactions that a company handles.”

My purpose with this series is to provide the...

Read more..

-->