Credit card security standard slammed
By UK CreditCards.com
The PCI Data Security Standard (PCI DSS) -- a set of rules for merchants governing credit card processing security -- is facing criticism from industry professionals.
Portaltech, an eCommerce specialist, said that "some" security experts feel that the system offers only a "minimal baseline" of protection.
This in turn suggests that credit card customers are more vulnerable to fraud than they could be, as PCI DSS is the worldwide standard for protection against credit card breaches and scams.
The standard works through imposing controls on private data related to credit card details, which are highly prized by con artists.
Andrew Walker, Portaltech chief executive, said: "Even though there have been many versions of the standard, each one is more onerous than the last and has not been successful in ironing out the problems. "Look at online application vulnerabilities. They're arguably the fastest growing area of security, and for good reason -- exposures in customer-facing applications pose a real danger of a security breach."
PCI DSS was released in 2004 and is regularly updated.
Published: 9 July 2009
- What is SIM card fraud -- and how can you avoid it? – While banks and phone companies are working to prevent SIM card fraud, you should take preventive steps, too ...
- Your card's security code explained – What is the short code on the back of your card called, why is it important and how is it evolving? ...
- Why are some consumers still being charged high transaction fees? – Despite rules regarding transaction fees, some companies are still tacking on too much to credit card purchases ...