| Technology |
The Cost of Security is Not ExpensiveJanuary 2010
If your credit card data is compromised, you will be held responsible for the loss as well as hefty fees and fines. At risk are direct costs of compromised transactions, penalty fees and the costs of a forensic audit that costs at least $40,000 to $50,000. For most independent retailers this cost alone can be crippling, to say nothing of the cost in terms of customer confidence.
PCI-DSS: Credit Card Retention Options and SAQsJanuary 2010
Perhaps the most important consideration for a merchant in securing sensitive credit card information is the level of credit card data being retained. The card retention level has a direct correlation to the level of the Self Assessment Questionnaire that merchants must complete to be PCI-DSS compliant.
PCI Data Security Standard: Terms and DefinitionsJanuary 2010
Well here we go again with a bunch of acronyms and new terms to learn. To help understand the important security requirements your card services agreement commits you to if you are processing credit cards, it important to understand some of the terms and definitions. The following definitions are taken directly from the PCI Security Standards Council’s website and are provided here for convenience, but we strongly recommend that you study this important website as it must be considered the authority and source for everything you read about PCI DSS.
PCI-DSS Security: Password ProtectionJanuary 2010
The PCI Data Security Standards are very specific about password rules, but those rules are also very consistent with industry standard practices for passwords. Most of the PCI DSS requirements can be controlled through settings in the various Windows© Operating Systems and even further in many PCI PA-DSS applications where credit card information is processed or stored. The first step to good security is to implement a password policy. Furthermore, PCI DSS compliancy and good security rules require that each company have a written policy that includes that the policy and all issues it incorporates are reviewed consistently on an ongoing basis. The following rules and policies will provide you a good starting point, but even these rules must be reviewed and established based on your overall needs and specific PCI Data Security Standards.
PCI-Data Security Standards: Securing your NetworkJanuary 2010
Perhaps the most important factor for a retailer to be PCI-DSS compliant is to implement and maintain a secure business network which properly controls access to and the security management of their data and processes. While PCI is concerned with protecting sensitive Credit Card data, these issues are important for securing any business network.
PCI-DSS: Special Consideration for Remote AccessJanuary 2010
When users can log into a network remotely additional security is required for PCI DSS compliancy but it is an important security concern for any business network. If you have opened your firewall (see “PCI-DSS: Securing your Network”) to the outside world, you need to be sure that your remote connection is secure and that the remote users are only those authorized to have access to your system.
Can You Unlock Your Own Technology?November 2004
It seems one can’t escape a plethora of passwords, personal identification numbers (PINs), codes and numbers just to function in today’s world. This wouldn’t be so difficult if it was only one special code to remember, but relying on a limited number of codes and passwords is increasingly dangerous as more and more important financial and security obligations require a reasonable mix of complex passwords.
The Languages We Speak!June 2004
Ever since the genesis of IBM (International Business Machines), and NCR (National Cash Register) before that, the computer industry has created its own language, primarily comprised of TLAs (Three Letter Acronyms). You can’t even define a computer without them.
Are You Safe and Secure?June 2004
The more we become dependent upon our computers, the more devastating it can be when they aren’t working properly. While rebuilding a system is never a pleasant task, doing it without the proper backup materials can cost you your job or your business! You can lose weeks, months, and even years of work if your disk crashes, you get attacked by a virus, or even if you shutdown or are brought down ungracefully!
Computer Cabling RoadmapFebruary 2004
This document defines the most common of the increasing variety of cable types and connectivity options that are likely to be encountered when setting systems up. The back of the typical computer offers many different shapes and sizes of ports, which usually only accommodate one type of plug (or connector). Fortunately this variety is so great that it is obvious where most devices attach. But there are certain cables that while looking the same, are very different. |
