Posted on February 10th, 2011 No comments
From a purely PCI perspective, network printers pose a network risk if they connect to any in-scope systems. At the least, your PCI penetration testing should identify any multi-function printers or scanners and make sure any usernames and passwords are protected.
Continue reading here:
Is A Network Printer Increasing Your PCI Vulnerability?
Posted on February 3rd, 2011 No comments
For PCI Columnist Walt Conway, things are busy right now. He is doing work for various departments at one university
What Universities Can Teach Retailers About PCI
Posted on November 15th, 2010 No comments
Last week, Visa officially brought corporate franchisors into the world of Level 1 merchant service providers by requiring them to register as Third-Party Agents, with all that that implies. At one level, the increased visibility, attention to PCI compliance and stricter validation regime should reduce data breaches at unsecure franchise locations.
Read more here:
Visa Classifies Corporate Franchisors As Third-Party Agents
Posted on October 7th, 2010 No comments
What would you do if your tokenization vendor goes out of business or gets acquired by a company with a whole different approach to tokenization? This is the ever awkward but increasingly important question every IT executive looking at tokenization needs to ask. The reality is that there are many firms in the tokenization space today, and you cannot count on all of them being around forever.
See original here:
If Your Token Vendor Goes Bankrupt, What Happens To Your Data?