Resources for Federal Financial Institutions Examination Council (FFIEC)

PCI compliance regs slated for facelift in Oct. 08

blogs.eweek.com

The PCI Standards Council, the body that oversees the Payment Card Industry Data Security Standard (PCI DSS) announced the formal timeline for releasing version 1.2 of the specification in October of this year.

PCI DSS was last revised in September 2006 and is still one of the most interesting security mandates in the IT industry. It is specific, it has no legal standing (i.e. it isn't mandated by legislation) and it carries clear and enforceable punishments for non-compliance.

Version 1.2 eliminates some overlap in various parts of the standard. What exactly is in 1.2 will be revealed at a webcast that I'll be attending and reporting that will take place on May 22.

Challenges of driving security into the previously unregulated consumer retail space where a high-volume of relatively low-value transactions where buyers and sellers can have no previous knowledge of each other.

View the Resource

Share or bookmarklet this web page at: