Research and Markets, the largest resource for market research information in world providing essential market research reports, industry research, industry analysis, forecasts, market studies, company profiles and country reports.
Welcome - Register - Login - Help/FAQ - 0 items View Basket
Worlds Largest Market Research Resource - 712671 Live Reports
Search Research and Markets
  Search
Enter keywords, a title or
a report id number below.





Advanced   
Company search
Register for free email updates of market research
Currency
  Select a currency for use throughout the site



Viewing report

Order by Fax
Printer Friendly
Electronic  Add to Basket



Understanding How PCI-Compliant Companies Can Be Breached: Security in a Post-Heartland World

Javelin Strategy & Research, June 2009, Pages: 49


  Description  
   Table of Contents   
   Companies Mentioned   
    
    
     
  Enquire before Buying   
  Send to a Friend   

The Payment Card Industry Data Security Standard (PCI DSS) raises the high water mark for data security. But there's a persistent myth that PCI compliance equals security. The reality is that PCI is only a baseline, and one that needs to be monitored constantly as the threat landscape changes. In the months following what may be the largest the data breach in U.S. history at Heartland Payment Systems®, many people are wondering if PCI is effective. In response, the PCI Security Standards Council has released new guidance around risk-based compliance and Qualified Security Assessor (QSA) reviews and remediation. But will these be enough to calm the concerns that merchants have with PCI? This report includes an update of PCI, an overview of emerging technologies, and lessons learned from the Heartland breach. Hashing, tokenization, end-to-end encryption, and Chip and PIN are covered in depth.

Primary Questions:

- Does PCI compliance equal security?

- Which are the most common requirements not met by previously PCI-certified firms?

- What has been learned about the Heartland breach?

- How can merchants store PAN data without violating PCI?

- What are the emerging technologies that can help merchants take PAN data out of scope for PCI compliance?

Methodology:

This report is based on data collected online from a random-sample panel of 2,339 respondents in September 2008. The survey targeted respondents based on representative proportions of gender, age and income compared to the overall U.S. online population. Overall margin of sampling error is ±2.03% at the 95% confidence level, for 2008.The report was also based on interviews with executives from the PCI Council, Heartland, and eight security vendors.


Product samples

A sample for this product is available. Please Login/Register to download this sample.

Customers who bought this item also bought

PCI Compliance Best Practices for CIOs

What Compliance Executives Need to Know About PCI Compliance Best Practices for 2011 - How to Update or Implement a Formal Security Program at Your Company

Point of Sale (POS) Terminals - Global Strategic Business Report

World Advanced Point of Sale Applications

Call Centers - Global Strategic Business Report

Determining European KOL Compensation: Fair-Market Value Benchmarks

The Business Case for Mobile Banking - 2nd Edition

Data Breaches and ID Fraud: Misunderstanding Could Fail Consumers and Burden Businesses

KOL Fair-Market Value and Aggregate Spend: Documentation, Tracking and the Sunshine Act

Disaster Recovery Business Continuity Template
For enquiries please call us on:
  +353-1-415-1241 (GMT Office Hours)
  1-800-526-8630 (US/Canada Toll Free)
  1-917-300-0470 (EST Office Hours)

   All rights reserved. © Copyright 2012 Research and Markets
   Terms and conditions Privacy Policy Publishers Employment Opportunities Site Map Link to us Webmaster Affiliate Network


Research and Markets RSS Feeds