Merchants 5 Step Guide
To PCI Compliance

   Step 1: An Introduction to PCI Compliance

   Step 2: Finding PCI DSS Level

   Step 3: Security Audits: 12 Requirements

   Step 4: Finding a PCI DSS Approved Scanning Vendor (ASV)

   Step 5: Completing the PCI DSS Self Questionnaire


 ISO / Acquirers 5 Step Guide
To PCI Compliance

   Introduction

   Step 1: Engage all resources

   Step 2: Identify and confirm a partner

   Step 3: Make your merchants aware of PCI Compliance

   Step 4: Supply tools to merchant

   Step 5: Implement and track

   Other considerations


 PCI COMPLIANCE
INFO

   New PCI Compliance 1.1 Standards

   PCI Compliant Basics

   PCI Compliance & Consumers

   Implementing PCI Compliance

   PCI Compliant Scan

   Further PCI Compliance Resources

   PCI Compliance Polls & Surveys


 PCI COMPLIANT
VENDORS

   Find PCI Scan Vendors

 About Us

   Contact Us

   PCI Compliance News

   SiteMap

   SSL Certificate

   EV SSL Certificate Guide






VISA CISP Bulletin

In August of 2006, VISA, Inc., a leader and originator of PCI Data Security Standards (PCI DSS), released a report on the top three POS vulnerabilities.

Their research revealed the following POS vulnerabilities:

  • Remote Access Security-Command-line based and visually driven software packages, such as pcAnywhere or MS Remote Desktop. These remote solutions offer a "back door," which makes them easy targets for hackers.

  • Host Security-Usually considered the Host computer, which is the central repository for payment data, authorization, data backup and other management functions. The Host computer is the most vulnerable for intrusion, via the network infrastructure.

  • Network Security -Securing and monitoring the network, including activity logging and correct configuration, along with proper encryption and special attention to changing the default passwords within a wireless network environment.


pci compliance                      pci compliance asv




pci compliancePrint this page

Send this page to a friend

|  Home  |  About PCI Compliance |  For Acquirers |  Find PCI Compliance Solutions | 
|  Preventing Data Breaches |  Managing Data Breaches |  Contact Us |    EV SSL Certificate Guide | 
© 2008 PCI Compliance Guide.org
   All right reserved - do not copy any material without written permission.