Friday, 21 September 2012

Facts of PCI Compliance

By Rhonda Benjamin


In today's world, the use of credit cards is increasing in a fast, rapid manner. With the increase of the use of such cards, the industries regarding such cards are blooming fast. Now, as these industries are blooming, frauds are increasing in number as well. Now, to stop such problems, you need to be sure you have a proper security system that will ensure you that the money you are storing in your account and the transaction procedures you are going through are safe completely.

These safety standards are known as PCI Compliance which is the standard code of information security for the organizations that are providing and dealing with the information of the users who are bearing credit cards.

The objective of PCI Compliance is to build and maintain a secure network. This is being performed by maintaining a highly active firewall to protect the card holder's data. Passwords should be changed regularly, and default passwords as set by the company should not be used. Secondly, a card holder's data should be protected. This is performed by encrypting the transmission of cardholder data across open, public networks. Thirdly, maintaining a Vulnerability Management Program. This is achieved by maintaining highly reliable antivirus software on all systems commonly affected by malware. Maintaining and developing secure systems and applications.

Fourthly, Implement Strong Access Control Measures. This is done by restricting access to card holder's data by the business need-to-know. Assignment of a Unique ID to the customers. Physical access to card holder data should be restricted. Fifth, testing and proper monitoring of the networks should be done. Track and monitor all access to network resources and cardholder data. Security systems should be tested properly. Finally, a proper Information Security policy should be maintained.

The card user should also change the default information provided to him or, her by the organization to stay safe. PCI Compliance ensures that even call centers cannot store the recordings which contain any information regarding credit card information. This is completely designed to save people from frauds who use to forge people and get access to the information of their credit cards and use that information to get access to the money stored.




About the Author:



No comments:

Post a Comment