By Third Party, 1 November 2010
Page last updated at 10:48 AM 01-11-2010
The second edition of the Payment Card Industry Data Security Standard was released on Thursday and contains minor changes to take virtualisation into account and increase security levels.
The Payment Card Industry Data Security Standard (PCI DSS) mandates that organisations handling payment-card data adopt a minimum security posture for the processing of credit-card transactions. Annual compliance validation is handled either internally or by external independent Qualified Security Assessors, depending on the size of the organisation.
Virtualised systems are now included in the new agreement [PDF] as part of the PCI DSS system components, specifically in requirement 2.2.1, which details how compliance functions relate to some virtual environments. The PCI Special Interest Group, composed of auditors, merchants and financial institutions, will flesh out how other environments will affect the standard.
Sourced from money.ninemsn.com.au
If you're looking for a balance transfer, low interest rate or a reward credit card then please visit our credit card comparison homepage.