[OWASP-GUIDE] PCI - Visa / MC / Amex merchant security standards

Andrew van der Stock vanderaj at greebo.net
Tue Feb 8 19:07:32 EST 2005

Ralf Durkee noted that the payment card industry (PCI, essentially Visa /
MC / Amex and others) have a security standard out. I saw the draft of
this last year when I was discussing my credit card handling section with

I didn't realise that it was out in final form. You can get it from here:


The fundamental concepts in this standard are now in the Guide 2.0 as of
last week, but I'll edit my text into line with the final standard.

Also note that they mention OWASP Top 10 explicitly! Yay for us!


More information about the Owasp-guide mailing list