home / articles / PCI DSS compliance for merchants

PCI DSS was formed by Payment Card Industry Security Standards Council and is a Payment card Industry data security standart for organizations that can be handlers of cardholer information for debit,credit or other bank cards.

This standart was created to recude fraudency and secure credit card holders.

Payment Card Industry Security Standards Council was formed by American ExpressDiscover Financial ServicesJCBMasterCard Worldwide and Visa International. It manages the outgoing evolution of PCI DSS.

Powerhosting.biz offers SSL EV for merchants with extented validation and HackerGuardian Service for one of the PCI DSS requirement.

Free test for PCI compliance.

There are 12 requirements for PCI DSS:

Control Objectives PCI DSS Requirements
Build and Maintain a Secure Network 1. Install and maintain a firewall configuration to protect cardholder data
2. Do not use vendor-supplied defaults for system passwords and other security parameters
Protect Cardholder Data 3. Protect stored cardholder data
4. Encrypt transmission of cardholder data across open, public networks
Maintain a Vulnerability Management Program 5. Use and regularly update anti-virus software on all systems commonly affected by malware
6. Develop and maintain secure systems and applications
Implement Strong Access Control Measures 7. Restrict access to cardholder data by business need-to-know
8. Assign a unique ID to each person with computer access
9. Restrict physical access to cardholder data
Regularly Monitor and Test Networks 10. Track and monitor all access to network resources and cardholder data
11. Regularly test security systems and processes
Maintain an Information Security Policy 12. Maintain a policy that addresses information security

 

Comodo HackerGuardian
Perfect Solution for obtaining a PCI compliant status, by putting on your site Comodo Trusted HackerGuardian Mark.
Business
Validation
ORDER
 
Comodo HackerGuardian Enterprise
Best solution for PCI DSS level 1, 2, or 4 merchants, by scanning all the vulnerabilities from the cloud.
Business
Validation
ORDER