| Credit card security |
|
The purpose of the Payment Card Industry - Data Security Standard (PCI-DSS) is to standardise the governance framework across all credit card providers such as Visa, MasterCard, AMEX, JCB etc The PCI-DSS is a multi-faceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. The AIS programme aims to enhance the protection of sensitive account and transaction information in the Visa acceptance environment. It protects the interests of all payment participants, including members, merchants and cardholders,in both the physical and virtual world. Visa was the first in the industry to create such a programme, including standards and self-assessment security tools The Payment Card Industry (PCI) Data Security Standard is a new, single set of data security requirements, developed by Visa and MasterCard that will apply across the payment industry worldwide, and replaces the old AIS Standards and Best Practices. The AIS programme is based on the PCI Data Security Standard.
SNS Management Consultants have partnered with a specialist organization to assist organizations in complying to PCI-DSS
When it all goes wrong TK Maxx systems compromised The hackers got into systems in Massachesetts in the U.S, and in the UK headquarters in Watford. It is thought they may have had the specific decryption tool for the company's encryption software. About 100 files were stolen, including two from Britain. The files contained millions of credit and debit card details. Information may then have been sold to other criminals who could have tried to go shopping using the card details. In a statement yesterday, TK Maxx, which has 210 outlets in the UK, said it was almost impossible to know exactly how much information is in the hands of thieves. On Money Box on Saturday, Chris A'Court asked what it means for customers "We can't now, and believe that we may never be able to, identify much of the information believed stolen." The firm said hackers accessing its computer systems have stolen information from at least 45.7m payment cards. It confirmed that card transactions in the UK could have been affected but said it believes PINs have not been compromised. Source: bbc.co.uk website 30th March 2007 Click this link to read the news report from BBC http://news.bbc.co.uk/1/hi/programmes/moneybox/6510601.stm
|
.jpg "6_Pillars")