- Get a grip or you don't get the job
- Desktops of the future here today
- Researcher hides IE attack on Web
- Cisco third quarter 2008 channel stuffing
- Sci-Fi's goofiest gadgets and technology
Rss FeedRss Feed
Crackin' the Kraken bot. Listen now!
Wireless dangers at airports. Listen now!
The movement towards laptop computers has fueled an unprecedented number of data breaches. For IT and Information Security, encryption and training has proven ineffective against careless users and insider threats. This paper discusses these limitations and explains how endpoint security allows remote deletion of sensitive data, tracking of computers outside the network and the physical recovery of missing computers. Learn how you can ensure mobile data protection regardless of end-user interference.
Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.
Find out how you can consolidate Windows workloads and create a more efficient virtualized data center in this informative webcast, "Reduce Complexity and Cost - Windows Server Consolidation with Virtualization." Six concise webcast modules are available for your viewing. Watch them all consecutively or only the topics that interest you. The modules cover performance, user case studies, enterprise-level support, managing windows workloads, setup and configuration and the future of virtualization. Learn more today. Register below to learn more and be entered to win an Archos 605 Portable Media Player.
So the line of defence remains is "PIN NUMBER" Wowww what a strong security ? HSBC , invest some money...- Anonymous
Several retailers this week bristled at having to comply with the Payment Card Industry's Data Security Standard, complaining that they carry an unfair burden in securing credit card data.
In interviews and speeches at the annual ERIexchange retail event here, executives also complained that implementing the standards are costly and could alienate customers.
The companies face heavy fines and increased transaction rates for noncompliance with the PCI standards.
Steve Methvin, director of store systems at Bi-Lo, a Greenville, S.C.-based grocery chain of about 230 stores in the southeastern U.S., called on the credit card companies themselves to do more to make cards more secure -- such as adding a PIN.
He said the credit card companies decline to take such steps to avoid complaints from customers.
"The responsibility for a safe environment is not mutual," said Methvin, who sat on a panel at the show. "It seems like we're being forced to provide an easy experience for Visa and MasterCard at our own expense. It's frustrating. It seems like we're investing money in areas" that customers don't care about.
Bi-Lo has so far met all the deadlines for compliance with the rules, he noted.
The standards were created by five major credit card companies -- Visa International, MasterCard Worldwide, American Express Co., Discover Financial Services and Tokyo-based JCB Co -- to protect credit card data before, during and after transactions, PCI officials said.
Ongoing development of the standard is now managed by the PCI Security Standards Council, which was set up by the credit card companies last September.
The standard includes a dozen security controls, including encryption, transaction logging and monitoring, along with authentication and access controls.
The standard went into effect in June 2005.
Robert Fort, director of IT at Virgin Entertainment Group Inc. in Los Angeles, said that while the controls imposed by PCI are sound, the organization should have worked more closely with the retail community to implement them.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com The Industry Standard IDG List Services |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Have we learned nothing from the TJX case?By Anonymous on June 11, 2007, 3:17 pmI've reviewed the PCI DSS and by my estimation it certainly seems like a reasonable level of security for the data involved. I find it particularly alarming that...
Reply | Read entire comment
View all comments