What is PCI compliance?
by Rohidas Bagul, on Nov 8, 2017 1:06:19 PM
What is PCI compliance?
by Devendra Dhawale, on Apr 30, 2013 5:39:18 PM
The problem of regulatory PCI compliance in public cloud such as AWS applies more to small and medium size companies than enterprises. For example, if you are a Bank or financial institution then you can spend sizable sum on assessing yourself for PCI compliance and work with leading auditing firm to achieve the same. However it becomes challenging for small companies running payment applications or infrastructure on foundation services such as EC2 (Elastic Cloud Compute) and S3 (Simple Storage Service). AWS clearly states that you can get a completely PCI compliant infrastructure on EC2 and there are number of customers using AWS infrastructure services who are PCI/PA compliant. Security and compliance is a shared responsibility between AWS and service provider/customers.
PCI DSS version 2.0 must be adopted by all organizations with payment card data by 1 January 2011, and from 1 January 2012 all assessments must be against version 2.0 of the standard.
The Payment Card Industry (PCI) has developed security standards for handling cardholder information in a published standard called the PCI-DSS Data Security Standard (DSS). The security requirements defined in the DSS apply to all members, merchants, and service providers that store, process or transmit cardholder data.
We know you enjoy reading digital business and technology blogs. Well, that's why you are here. Isn't it? We share this love as well. That's why we created a place where our digital professionals from different technology and business teams could come and discuss ideas to foster business transformation through technology, digital philosophy and user centric design.
The views and opinions expressed in this weblog represent that of the author and not those of the employer. e-Zest holds no responsibility for the correctness of it.
e-Zest Solutions is digital experience engineering company with facilities in the United States (Detroit & San Jose), Germany (Hannover), United Kingdom (London UK) and India (Pune) with global clientele. Our services include custom software development, offshore software development, UX consulting, BigData, Managed cloud Services (Azure & AWS), SharePoint consulting/Migration, Enterprise Java application development, Automated software testing services.