Advertisement

White Paper: Where the PCI Council Got It Wrong on Tokenization

Dec. 19, 2011

Prime Factors, a Eugene, Ore.-based data security company, recently responded to the August publication of the PCI DSS Tokenization Guide with a white paper of its own that attempted to address what it calls the shortcomings of the PCI document. Tokenization Guidance: How to Reduce PCI Compliance Costs, licensed by Prime Factors and completed by research firm Securosis, said the PCI Tokenization Guidance doesn’t answer the central question it purports to examine: How does tokenization alter PCI compliance? “They released ‘guidelines’ which are lacking in guidance,” the authors said. Prime Factors said the paper helps the merchants determine what is in or out of scope and provides audit advice and a tokenization audit checklist for how PCI requirements apply to systems that use tokenization. “Given that tokenization offers better security, simplifies data storage security, and makes audits easier, it’s baffling that the [PCI] Council failed to offer clear advice that would encourage adoption,” the paper concluded. “Discovering what’s missing from the official guidelines—usually only discovered after purchasing a product and coming to grips with how it really works—is no recipe for success. To request a copy of the white paper click here.



Advertisement


  • Report: CNP Merchants Beware of Fraud-Filled November - Nov. 3, 2014
    Report: CNP Merchants Beware of Fraud-Filled NovemberHeading into the holiday shopping season, Feedzai, an antifraud technology provider that uses machine learning to analyze payment transactions in real time, recently released some interesting statistics pertaining to card-not-present fraud culled from its merchant clients over the past year... November as the biggest month for CNP fraud.
  • Yoyo Chooses BlueSnap Gateway - Nov. 3, 2014

    Yoyo Chooses BlueSnap GatewayWaltham Mass.-based BlueSnap today revealed that British mobile marketing and payments platform provider Yoyo has selected its gateway for cross-border online and mobile transactions.

  • Kmart Latest Breach Victim - Oct. 14, 2014

    Kmart Latest Breach VictimAfter a brief respite as the main target of hackers, a major retailer is in the news after experiencing a breach of its network security. Sears Holdings on Friday acknowledged the POS systems at an unknown number of Kmart stores have been compromised.

  • Two Companies, One Video? - Oct. 14, 2014

    Two Companies, One Video?Two startups trying to change the way consumers use payment cards launched with eerily similar marketing videos. CardNotPresent.com got to the bottom of the mystery.

  • MasterCard Mining Facebook In The Outback - Oct. 9, 2014

    MasterCard Mining Facebook In The OutbackMasterCard and Facebook have signed a two-year agreement in Australia that will give MasterCard access to anonymized Facebook user data the payment network will then offer to its financial institution clients to use for marketing purposes, according to published reports.

  • JP Morgan Chase Breach Could Be Largest Ever - Oct. 6, 2014
    JP Morgan Chase Breach Could Be Largest EverJP Morgan Chase, one of the largest financial institutions in the world and the largest issuer of credit cards in the U.S., disclosed in a securities filing on Thursday that its systems were hacked last summer potentially compromising the accounts of 76 million individuals and seven million businesses.
  • eBay Spins Off PayPal - Oct. 2, 2014
    eBay Spins Off PayPalOn Tuesday, eBay formally announced a move that had been expected, and agitated for by activist shareholders, for some time: PayPal will be spun off as its own independent, publicly traded company during the second half of 2015.


      Request the CNP Media Kit today

 

 

Sign Up Today Free

Receive the twice weekly CNP Report and monthly feature articles providing in-depth examinations of global CNP issues.

Please take a moment and register.
* First Name:

* Last Name:

* Password:

* Confirm Pwd:

* Email:

* Category:

Company:

 
Captcha
Answer:

 

 

CNP Archive

Researching companies or people in the CNP industry? Search our past coverage for targeted news and information.

Search here