Posted on November 19th, 2009 No comments
This week marks the debut of StorefrontBacktalk’s new PCI columnist, Walter Conway, and Conway debuts by trying to decipher encrypted tea leaves of the PCI Council’s position on out-of-scope data. what does “the means to decrypt” include
Read more from the original source:
Going Out On A Limb With Out Of Scope
Posted on June 10th, 2009 No comments
Unlike the Nevada law (see Part 1), which is relatively brief and narrowly focused on the encryption of electronically transmitted data, Massachusetts’ new data security regulation, 201 CMR §17.00(pdf), is extremely sweeping and eliminates much private discretion in the realm of information security by imposing comprehensive, detailed operational requirements for business activities that touch personal information.