4 min read
Why the Apple vs. FBI Dispute Is A Good Thing
The Internet and mainstream media has been ablaze with articles and opinion pieces about the dispute between the FBI and Apple over an iPhone used by...
1 min read
Just like spring - a new version of PCI DSS will come early this year!
Last week the PCI Standards Council commented on the upcoming DSS 3.2 update and what it means for the rest of 2016. Ever since the sunset of SSL and...
2 min read
Sunset of SSL Extended
If you’ve been struggling with keeping up with various SSL vulnerabilities and planning an orderly cutover to TLS then the recent announcement by the...
3 min read
Must Format Preserving Encryption (FPE) be distinguishable from cardholder data for PCI?
Previously we looked at Format Preserving Encryption (FPE) its characteristics and suitability for application in solutions intended for PCI DSS. To...
1 min read
PCI DSS Version 3.1 Has Arrived
The PCI Security Standards Council today published the expected update to PCI releasing these documents including some specific migration guidance:...
1 min read
PCI Security Standards Council set to kill off SSL in PCI DSS/PA-DSS 3.1 updates
The PCI council has released an announcement that they are preparing an updated version of the PCI DSS (v3.1) and PA-DSS (v3.1), where they will be...
4 min read
What is Format Preserving Encryption and is it suitable for PCI DSS?
Format Preserving Encryption or FPE is recent technology that is beginning to show up in payment solutions with the promise of simplifying PCI DSS...
Analysis of PCI DSS 3.0
PCI DSS 3.0 was released Nov 2013. There are new and changed requirements with a more organized look. Check out our in-depth analysis and commentary...