AWS releases PCI DSS Quick Start for Deploying PCI DSS In-Scope Workloads
May, 2016, Communications Team, Coalfire
In the next step to help customers adopt their platform for PCI, Amazon Web Services (AWS) has released their PCI DSS Quick Start program. The PCI DSS Quick Start program is the next evolution of cloud providers developing tools for rapid deployment of standardized configurations to drive adoption in heavily regulated industries. The Quick Start program was wholly developed by AWS field teams to help provide guidance on reference architectures, configuration and tools to rapidly deploy the guidance.
What to Expect in the PCI 3.2 Update
April, 2016, Shawn Shifflett, CISSP, QSA, Senior Practice Director, PCI
A preview of new requirements and guidance expected later this month from the Payment Card Industry Security Standards Council was announced Thursday. The PCI DSS 3.2 version represents the first update to the standard that the Council has released since 3.1 in April 2015 and 3.0 in November of 2013.
PCI Council Gives Merchants Reprieve on PCI 3.1 Updates
January, 2016, Shawn Shifflett, CISSP, QSA, Senior Practice Director, PCI
The Payment Card Industry Security Standards Council (PCI SSC) released an update to its vulnerability standards and is giving merchants until June 2018 to migrate their security protocols, even though waiting is not recommended.
Report from the PCI SSC North American Community Meeting
October, 2015, Joseph Tinucci, Senior Director, Managed Services
The Payment Card Industry Security Standards Council held their 2015 North American Community Meeting this year in Vancouver, BC, from September 29 – October 1. Coalfire was well represented at the meeting, with Dan Fritsche, Managing Director, Application Security, making two presentations at the event (Point-to-Point Encryption and Securing Virtual Payments). Since I was also there, and I am a guest blogger for the Treasury Institute for Higher Education’s PCI DSS blog, I posted about the PCI DSS trends that I observed at the meeting.
Chip Cards Finally Come to America – But What Does it Mean for Merchants and Consumers?
October, 2015, Andrew Barratt, Managing Director, Europe
Like it or not, today the U.S. finally adopts EMV technology. While the implementation by most major retailers and large U.S. banks is expected to be delayed, the “chip and PIN” card types are coming to America to stay.
The real debate is, will EMV adoption do anything for card data security?
Andrew Barratt, Coalfire’s Managing Director of Europe, explained some lessons learned from the United Kingdom. He sat down with John Rostern, executive vice president, to discuss the EMV liability shift.