[OWASP-GUIDE] PCI - Visa / MC / Amex merchant security standards

Andrew van der Stock vanderaj at greebo.net
Tue Feb 8 19:07:32 EST 2005


Ralf Durkee noted that the payment card industry (PCI, essentially Visa /
MC / Amex and others) have a security standard out. I saw the draft of
this last year when I was discussing my credit card handling section with
Visa.

I didn't realise that it was out in final form. You can get it from here:

http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf

The fundamental concepts in this standard are now in the Guide 2.0 as of
last week, but I'll edit my text into line with the final standard.

Also note that they mention OWASP Top 10 explicitly! Yay for us!

thanks,
Andrew




More information about the Owasp-guide mailing list