-
Nov15
PCI-DSS 1.2 discourages the use of MD5, in favor of the newer and better SHA1 algorithm. But I keep getting questions on whether use of MD5 is a security threat or whether it will impact PCI compliance.
Continue reading "MD5, PCI-DSS and Security" »
-
Sep25
I just read an article in SC Magazine that says that some vendors are calling for a logo that can be displayed by PCI compliant companies. The idea is that being compliant can be used as a marketing tool and that a lot of companies are not able to communicate the impact of being compliant properly. If they had a logo on their website, people will know right away.
Continue reading "Logo for PCI Compliance?" »
-
Sep24
Almost all the major data breaches that have happened in the last 2 years have involved companies that were supposed to be PCI compliant. If being compliant meant that they were secure, then how could they have been breached?
Continue reading "PCI Compliance does not equal security" »
