7 min read
PCI SPoC (PIN on COTS) - Grand Experiment in Mobile Payments
Big changes are coming to payment security in 2019. PCI is launching a grand experiment in payment security - Software PIN on COTS (SPoC) - a subset...
pci (5)
3 min read
PCI DSS v3.2.1 - What You Need to Know to Stay PCI Compliant
To accept credit cards in Canada, businesses need to be PCI compliant. Becoming PCI compliant can be difficult in the first place and keeping up with...
2 min read
If You Take Credit Cards By Phone or Mail - You Need to Read About Visa's October Mandate
PCI Rules Aren't the Only Ones You Need to Comply With Most organizations concerned with payment compliance are focused on the PCI Data Security...
3 min read
PCI DSS May Require Pulling Up Your SOX (or ISO)
Executives and managers in organizations preparing for their first onsite PCI security assessment may feel confident that having passed a SOX audit...
5 min read
17 Predictions About the Next Version of PCI DSS
PCI DSS v3.2 is due for an update this year - but what will that look like? In this article, we peer into our crystal ball to make some predictions...
5 min read
Understanding "Connected-to" - Is The Internet In Scope For PCI DSS?
PCI DSS is all about scope. Getting scope right or wrong is perhaps the single most critical factor determining the ultimate success or failure of an...
2 min read
8-digit BIN Issues and Risks Remain after PCI Truncation Rules Clarified
Last month we wrote this article about issues arising from the addition of new BIN ranges and the lack of clear guidance specifically with 16-digit...
1 min read
In The Payments World, Even Canadians Have ZIP Codes!
Many Canadians traveling to the US have experienced the frustration of running into a form of address verification. This is a common extra check...
7 min read
NIST Moves on Sweet32 - 3DES, Blowfish, and Others - Mostly Unsafe
Now is the time to stop using 64-bit block length ciphers such as 3DES (TDEA) and Blowfish in general purpose applications of cryptography. In 2016,...