The new PCI DSS version 2 is effective. What now?

The PCI Security Standards Council (PCI SSC) is a global, open industry standards body providing management of the Payment Card Industry Data Security Standard (PCI DSS), PIN Transaction Security (PTS) requirements and the Payment Application Data Security Standard (PA-DSS). The PCI SCC has released the new version 2 of its PCI Data Security Standard (PCI DSS) which has become effective on 1st January 2011.

The new standard begins the three year lifecycle that allows for validation against the previous version of the standard (1.2.1) until 31st December 2011. This provides stakeholders time to understand and implement the new version of the standard as well as provide feedback. The PCI SCC encourages organizations to transition to the updated version as soon as possible.

The changes in version 2.0 introduce no new major requirements. The majority of changes are modifications to the language to clarify the meaning of the requirements and make understanding and adoption easier. Many of the revisions reinforce the need for a thorough scoping exercise prior to assessment in order to: understand where cardholder data resides; reduce the infrastructure and applications subject to the standard; allow organizations to adopt a risk-based approach when assessing; prioritizing vulnerabilities based on specific business circumstances;

commissum’s Principal Assurance Consultant André Coner commented that many organisations fail to adequately segment the cardholder data environment from the remainder of it’s network and therefore are significantly increasing the complexity and cost of their PCI DSS compliance. Because, without adequate network segmentation the entire network is in scope of the PCI DSS assessment. Segmentation is therefore strongly recommended as it will reduce the scope and cost of the PCI DSS assessment. It also reduces the cost and difficulty of implementing and maintaining the PCI DSS controls.

Via EPR Network
More Computer press releases

New Year Opens With Free Offers On The Purchase Of Image Printers At SEL

Kick start this new year with a fantastic offer from South East Labels (SEL). Customers who buy the Image TTP247 Plus Series desktop label printer, will walk away with a free, fully professional label making software. With this combination, customers are getting not only a coveted range of printers but also a fully integrated software programme. The Plus series ensures fast label processing and output, as it’s equipped with a 32-bit microprocessor. LabelDirect is a fully professional labelling software that includes the advanced features of other labelling software such as print job management and data storage. It is also 100 per cent WYSIWYG and produces exemplary print performance.

The latest in label printing technology is available via SEL’s large network of inkjet and laser printed labels. In addition to paper labels, SEL also supplies vinyl and polyester. The assortment of label materials extends to their many diverse uses. From pharmaceutical (cryogenic and anti-microbial), and horticultural, to fashion (bubble and resin) and high security demands, SEL’s range is overwhelming.

The Image Plus TTP247 series printer is also one of the strongest thermal transfer label printers in the market. The printer also comes equipped with a standard memory of 2MB Flash, 8MB SDRAM, and a slot for an SD card. Its print speed can go up to 5 ips with 203 dpi and 3 ips with the 300 dpi version. SEL also has printers that are available in a wide selection. Customers can choose from desktop, industrial, digital, and portable printers as well as barcode printers, scanners, verifiers, label printing software and printer ribbons.

Via EPR Network
More Computer press releases

Portable Storage Media Management Solution

US Diversified Tech, LLC together with Advanced Systems International, SAC announce the release of USB Lock RP v5.29. A software security solution designed strictly to provide the ability to block or allow specific portable media devices. USB Lock RP’s scope of protection now includes: eSata, Firewire, USB 3.0 super speed technology, MTP, USB 2 sticks, as well as cell phones, Tablets, iPod’s, mp3, SD Cards and all other interfaces that can be used to extract data. The newest and biggest addition is the eSata protection which has been, and remains industry wide, a difficult opening in data security to address. With the inclusion of eSata, USB-3.0 and Firewire super speed transfer interfaces, Advanced Systems International, SAC has addressed every opening presented where a media storage device can be misused. It is important to not just lock out these devices but to have the option to allow their use, when necessary, in a managed and protected manner.

Javier Arrospide, Advanced Systems International, SAC founder and lead software developer states that, “USB Lock RP (Remote Protect) is straightforward effective endpoint security software. Allowing organizations to authorize, from a central location, specific devices with ease and automatically block all other removable storage external hardware that could be used to extract data assets or to enter malware in your networked environment.” USB Lock RP’s operation is automatic, alerting, logging, authorizing or blocking device connections in real-time. Installation is simple and, for large networks, the client side setup is provided in MSI format so initial remote deployment can be done silently and with ease.

Via EPR Network
More Computer press releases