[Owasp-kolkata] PCI DSS and IT Security
purohit singh
purohitsingh2 at gmail.com
Fri May 28 08:21:11 EDT 2010
Dear All,
This is with reference to PCI DSS. Is the PCI DSS policy only restricted to
applications, systems and environments where debit card or credit cards are
used for transactions ? How about transactions involving internet banking
for retail users and corporate banking for corporates where no credit card
or debit card details are used. Also how PCI DSS policy is technically
implemented. Financial and banking organizations dont implement the PCI DSS
policy in the first step. There is lot of opposition, red-tapism to change.
The Application penetration testing is executed in one phase, the network
pen-test is done at a later stage, the web server V.A , database audit is
done randomly. So how the PCI DSS policy is executed and integrated. Please
clarify.
With regards,
Purohit Singh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-kolkata/attachments/20100528/165b7c7b/attachment.html
More information about the Owasp-kolkata
mailing list