4 min read
NIST Update to Format Preserving Encryption Standard affects PCI Use Cases
Last month NIST announced they were seeking feedback on a proposed updated guidance for FPE. More formally this is SP 800-38G rev 1 "Recommendation...
5 min read
This Week’s [in]Security – Issue 103
Welcome to This Week’s [in]Security. This week: Citrix, Ixigo, and a Chinese breach, the "creepy assignment", skepticism over Facebook's privacy...
7 min read
This Week’s [in]Security – Issue 102
Welcome to This Week’s [in]Security. This week: PCI DSS 4.0 begins its journey, debates on cashless and contactless payments, 2018 data breaches up...
7 min read
This Week’s [in]Security – Issue 101
Welcome to This Week’s [in]Security. This week: detailed alert on trending e-commerce attack methods, PCI glossary for small business, PCI seeks...
7 min read
This Week’s [in]Security – Issue 100
Welcome to This Week’s [in]Security. This week: PCI PIN program gets moving, POS breach, credential stuffing TurboTax breach, breach fallout, secret...
6 min read
This Week’s [in]Security – Issue 99
Welcome to This Week’s [in]Security. This week: PCI PIN and 3DS-SDK reporting templates, new RFC process, EMV still cutting fraud, breaches at...
7 min read
This Week’s [in]Security – Issue 98
Welcome to This Week’s [in]Security. This week: best practice for DSS assessments, crypto-currency CEO dies with only password to $190M, breaches at...
7 min read
This Week’s [in]Security – Issue 97
Welcome to This Week’s [in]Security. This week: New PCI Information supplement, Updates on SPoC, and Secure Software Framework, PwnPOS alert, More...
7 min read
This Week’s [in]Security – Issue 96
Welcome to This Week’s [in]Security. This week: PCI Qualified PIN Assessor (QPA) program, FAQ updates, ElasticSearch db leaks 24M mortgage records...