When are merchants required to use a PA-DSS validated POS (point-of-sale) application?
September 21, 2011 | POSTED BY MICHAEL OGLESBY IN COMPLIANCE, PCI
In True's experience as a QSA advising merchants with PCI compliance, one point of confusion seems to always surface ? when are merchants required to use a Payment Application Data Security Standard (PA-DSS) validated POS application?
First, it is impo...READ MORE +
PCI SSC Releases Tokenization Guidelines
September 21, 2011 | POSTED BY JERALD DAWKINS IN COMPLIANCE, PCI
Today, the PCI SSC finally released tokenization guidelines. Nothing too surprising in the guidelines, but they did bring up several interesting points. One of my favorites is:
"When evaluating a tokenization system, it is important to consider all ele...READ MORE +
Picking on the Little Guy
September 21, 2011 | POSTED BY DOMINIC SCHULTE IN SECURITY, PCI
Security is expensive. We all know that. I see the battles my clients continually face ? particularly the small and medium-sized businesses (SMBs) ? as they try to spread their limited security dollars across dedicated salaries (for the fortunate ones), t...READ MORE +