Archive for April, 2010

  • Breaking Down Subrequirement 1.1

    Breaking Down Subrequirement 1.1

    The first requirement of PCI DSS is part of a 2 requirements directed at building and maintaining a secure network. Requirement 1: Install and maintain a firewall configuration to protect cardholder data. This requirement is broken down into 4 subrequirements of which 2 of them are broken down into further subrequirements. All the subrequirements are directed towards installing and maintaining a firewall for protection.

    Read More

  • Lack of Database Storage Does Not Make an Application PA DSS Compliant

    Lack of Database Storage Does Not Make an Application PA DSS Compliant

    A question came up on an email list about PA DSS software. There is still a lot of confusion about what it takes for an application to be PA DSS certified and what organizations need to have their software certified. Hopefully, I can clear up some of the confusion with this post.

    Read More

  • Understanding PCI Compliance in 4 Easy Steps

    Understanding PCI Compliance in 4 Easy Steps

    Understanding PCI Compliance can be broken down into 4 simple parts. Each part pertains to the organizations, individuals and their roles within compliancy.

    Read More