To protect cardholders, businesses and the payments card industry itself, regulations have been enacted that mandate changes in the way payment card information is used and handled. In 2001, Visa implemented "CISP" - the Cardholder Information Security Program. CISP provides tools and standards, and "CISP Compliance" is required of all processors and merchants involved in Visa transactions. Meanwhile, Visa and MasterCard collaborated to create the Payment Card Industry ("PCI") Data Security Standard. Visa CISP compliance mandates that merchants meet PCI standards. The PCI Data Security Standards ("DSS") describe how retailers must keep card data and networks (with payments data) secure, how they must maintain a clear security policy, protect cardholder data, implement anti-virus and other security systems, restrict access to this data and track/test their system regularly.
Related white papers
NAC 2.0: A new model for a more secure future
As organizations turn to network access control (NAC) technologies to protect their networks and data, the flaws of earlier versions of NAC are becoming apparent. New pressures from a constantly...
CISSP Prep Course
Prepare for the most important security certification with superior prep materials and test-taking tips. Description: The CISSP has clearly emerged as the key certification for security professionals. In fact, an informal survey...
The Impact of Strong Authentication on the Online Banking User Experience
Convention states that banks can't offer increased online security without impacting the user experience. Think again. With RSA banks can re-write the rules.Download Now: Discover the key to...
Regulatory Compliance: Business Opportunity/Technical Challenge
Good corporate governance has always been an essential part of running a successful enterprise. The ability to comply raises questions about the adequacy of information technology used within the enterprise...
Driving Toward Compliance
Compliance introduces a new level of corporate accountability in which flexibility is a key requirement. One in which consistency and control across ERP, supply chain, CRM, and financial systems is...
Reducing Total Cost of Security Ownership
The cost of security should be measured not only by list price, but in the sum total of operational performance, implementation, and ongoing management costs. IT is no longer shackled...
"Compliance Trends: Evolving Audit Expectations and Best Practices"
After the grueling exercise of preparing for the initial audits under the Sarbanes-Oxley Act, one can expect refinements in enforcement. As best practices emerge - along with a few failures...


