Newsletter Subscriptions
Newsletter Archives
Magazine
White Papers
Webcasts
Podcasts
IT Jobs
Community
Slideshows
New Data Center

Network World

News
Blogs
Newsletters
Videos
Events
Resources
Insider
More
Twitter
Facebook
Linked In

Security
LAN & WAN
Unified Communications
Cloud
Infrastructure Management
Wireless
Software
Data Center
SMB Networking
IT Careers
Gearhead
Tech Debate
Tests
Community

Anti-malware
Compliance
Cybercrime
Firewall & UTM
IDS/IPS
Endpoint Security
SIEM
White Papers
Webcasts
Tests

SDN
Ethernet Switch
Router
IPv6
Service Providers
Metro Ethernet
MPLS
VPN
WAN Optimization
White Papers
Webcasts
Tests

VoIP
E-mail services
Videoconferencing
Collaboration / Web 2.0
White Papers
Webcasts
Tests

SaaS
White Papers
Webcasts
Tests

Network Management
System Management
Identity Management
Patch Management
Application Management
Asset Management
White Papers
Webcasts
Tests

3G & 4G
Smartphones
Mobile Apps
Wi-Fi
WiMAX & LTE
Wireless Management
Wi-Fi Security
MDM
BYOD
White Papers
Webcasts
Tests

Windows
Linux
Applications
CRM
ERP
Business Intelligence
White Papers
Webcasts
Tests

Virtualization
Disaster Recovery
Server
PC
Network Storage
Storage Management
Green IT
White Papers
Webcasts
Tests

Broadband
Collaboration
Equipment
Mobile
Networks
Security
Storage
White Papers
Webcasts
Tests

White Papers
Webcasts
Tests

Cool Tools
IT Asked & Answered
White Papers
Webcasts
Tests

White Papers
Webcasts
Tests

White Papers
Webcasts
Solution Centers

You are previewing premium content. Become an Insider to read the full article.

You are viewing Insider content. Browse other Insider articles

News

Retailers fail to pass security test

One year after the deadline, most big merchants still aren't Payment Card Industry compliant.

By Ann Bednarz, Network World
July 07, 2006 03:15 PM ET

A full year after the deadline, a majority of large merchants face potential fines because they still aren't in compliance with a data security standard created by major credit card companies including American Express, Discover, MasterCard and Visa.

The Payment Card Industry (PCI) standard lays out requirements for securing networks, protecting cardholder data and auditing security systems regularly. The PCI rules, which went into effect June 30, 2005, prescribe enforcement policies and penalties for noncompliance, depending on the volume of credit card transactions handled.

According to the standard, noncompliant merchants and payment processors can face as much as $500,000 in fines per incident if cardholder data is compromised. In addition, the card associations can revoke noncomplying companies' credit card processing privileges.