|
Validating PCI DSS Functionality in Products |
|
The payment card industry has made great strides in security through the introduction of the PCI Data Security Standard (PCI DSS), which prescribes requirements for cardholder network architectures, policies & procedures, and even products. As a natural result, a number of clarifying questions surrounding products continue to arise, e.g. which products are required, when and where, and how should they be configured? Independent product validation of PCI DSS functionality offers much needed clarity and insight to assessors, banks, merchants and service providers. Such a standardized, independent certification process enables vendors to communicate product features more effectively and credibly to the payment card industry.
by Rick Moy, President, NSS Labs
Sept. 2008
 Download the White Paper
|
