10-02-2008, 10:28 AM
Quote:The Payment Card Industry Security Standards Council, the organization that sets technical requirements for processing credit- and debit-cards, today issued revised security rules, while also indicating next year it will focus on new guidelines for end-to-end encryption, payment machines and virtualization.
The PCI 1.2 data security standard (DSS) the subject of debate as it was edging toward finalization at last week's Council meeting in Orlando where about 625 attendees from the retailing sector and the high-tech industry showed up to discuss it seeks to clarify several parts of the earlier 12-part PCI 1.1 standard that had many confused.
For instance, it clarifies that all operating systems associated with card processing have to run antivirus software, while many had thought this was only about Microsoft Windows...
full article: http://www.networkworld.com/news/2008/10...ml?hpg1=bn