Posted on May 7th, 2009 No comments
In the high stakes poker tournament that is the payment processing industry these days, a group of merchants and payment application vendors has raised the bet. Not content to just advise the players (by joining the PCI SSC), a group of merchants and payment system vendors have decided to take a seat at the table by launching their own payment security standard – an American National Standard, under the auspices of the ASC X9 standards committee.But GuestView PCI Columnist David Taylor wonders if one national standard beats two pairs of industry standards. He takes a hard look at some of the current players and their rather interesting histories.
See the rest here:
Raising the Bet: A National Payment Security Standard
Posted on May 4th, 2009 No comments
The back-and-forth compliance dance that is being forced upon Heartland Payment Systems took its latest journey through the PCI Looking Glass Friday (May 1), with Heartland declaring that it has now returned to Visa’s list of PCI DSS validated service providers (aka the list of providers that Visa heartily recommends today but will deny ever having heard if they’re breached tomorrow).The journey began when Heartland was certified PCI compliant April 2008. A few months later, Heartland was severely breached and Visa began its revisionist history dance. Given a public stance that no PCI-compliant merchant or processor had ever been breached, Visa determined that Heartland therefore could not have been truly compliant in April 2008