More NewsPCI Security Standards Council Published New Guide to Wireless Security

PCI Security Standards Council Published New Guide to Wireless Security

The PCI Security Standards Council (PCI SSC), an international open industry standards body providing management of the Payment Card Industry Data
Security Standard (PCI DSS), PIN Entry Device (PED) Security Requirements and the Payment Application Data Security Standard (PA-DSS), has published the findings of the council’s special interest group (SIG) on wireless technologies.

The Wireless SIG has published an information supplement, PCI DSS Wireless Guideline, to help organisations understand how PCI DSS applies to wireless environments, how to limit the PCI DSS scope as it pertains to wireless, and practical methods and concepts for deployment of secure wireless in payment card transaction environments.

As wireless networks have been implicated in past payment card data breaches, a SIG was formed to investigate and create specific recommendations to increase the security of wireless implementations in accordance with the PCI DSS, and reduce the potential for wireless to be an entry point in attacks on networks containing card data. The new paper is intended for organisations that store, process or transmit cardholder data that may or may not have deployed wireless LAN (WLAN) technology, as well as assessors that evaluate PCI DSS compliance.

The findings of the SIG provides the first, highly specific, actionable wireless operational guide for complying with PCI DSS, including:

  • Generally applicable wireless requirements: These are requirements that all organisations should have in place to protect their networks from attacks via rogue or unknown wireless access points (APs) and clients.
  • Requirements applicable for in-scope wireless networks: These are requirements that all organisations that transmit payment card information over wireless technology should have in place to protect those systems.

Related Articles

Infosys Finacle to power Santander UK’s international cash management system

More News Infosys Finacle to power Santander UK’s international cash management system

3w The Global Treasurer
Preparing for GDPR? Here’s four things to consider

More News Preparing for GDPR? Here’s four things to consider

4m Elliott Wiseman
Cash flow in focus for investors

Cash Management Cash flow in focus for investors

5m Conor Deegan
Treasury TV: Karen Pugsley, Domino's Pizza Group

More News Treasury TV: Karen Pugsley, Domino's Pizza Group

5m Victoria Beckett
Treasury TV: Yeng Butler compares US and European MMF reforms

Compliance Treasury TV: Yeng Butler compares US and European MMF reforms

5m Victoria Beckett
Treasury TV: Tim de Knegt, The Port of Rotterdam

10 Minutes With The Treasury Treasury TV: Tim de Knegt, The Port of Rotterdam

5m Victoria Beckett
Banks are selling clients short with short dated cash deposit U-turns

Banking Banks are selling clients short with short dated cash deposit U-turns

5m Victoria Beckett
What does sterling’s Brexit boost mean for UK manufacturers?

More News What does sterling’s Brexit boost mean for UK manufacturers?

6m Tasja Botha