Advertisement

White Paper: Where the PCI Council Got It Wrong on Tokenization

Dec. 19, 2011

Prime Factors, a Eugene, Ore.-based data security company, recently responded to the August publication of the PCI DSS Tokenization Guide with a white paper of its own that attempted to address what it calls the shortcomings of the PCI document. Tokenization Guidance: How to Reduce PCI Compliance Costs, licensed by Prime Factors and completed by research firm Securosis, said the PCI Tokenization Guidance doesn’t answer the central question it purports to examine: How does tokenization alter PCI compliance? “They released ‘guidelines’ which are lacking in guidance,” the authors said. Prime Factors said the paper helps the merchants determine what is in or out of scope and provides audit advice and a tokenization audit checklist for how PCI requirements apply to systems that use tokenization. “Given that tokenization offers better security, simplifies data storage security, and makes audits easier, it’s baffling that the [PCI] Council failed to offer clear advice that would encourage adoption,” the paper concluded. “Discovering what’s missing from the official guidelines—usually only discovered after purchasing a product and coming to grips with how it really works—is no recipe for success. To request a copy of the white paper click here.



Advertisement


  • Supreme Court Will Not Hear Durbin Case - Jan. 22, 2015
    Supreme Court Will Not Hear Durbin Case

    The U.S. Supreme court yesterday declined to review an appellate decision affirming the caps on debit interchange and network routing requirements formulated under the Durbin Amendment to the 2010 Wall Street reform package.

  • President Unveils Sweeping Cybersecurity Initiative - Jan. 15, 2015
    President Unveils Sweeping Cybersecurity Initiative

    On Tuesday, President Obama unveiled a comprehensive package of cybersecurity legislation that features incentives for private/public information sharing, criminalizing certain cybercrime-related activities and implementing a national standard for breach notification.

  • EU Agrees to Interchange Legislation Including Caps - Dec. 22, 2014
    EU Agrees to Interchange Legislation Including Caps

    The most recent chapter in efforts to cap interchange fees in Europe ended last week when the European legislators reached an agreement in principle with member nations capping cross-border interchange fees at 0.2 percent per debit-card transaction and 0.3 percent per credit-card transaction.

  • Alibaba Threatening Main Street? - Dec. 18, 2014
    Alibaba Threatening Main Street?

    The Alliance for Main Street Fairness (StandWithMainStreet.com) has produced a television ad warning that, after its enormous IPO, Chinese e-commerce company Alibaba.com will take advantage of current tax law to "decimate local retailers."

Advertisement

 

 

Sign Up Today Free

Receive the twice weekly CNP Report and monthly feature articles providing in-depth examinations of global CNP issues.

Please take a moment and register.
* First Name:

* Last Name:

* Password:

* Confirm Pwd:

* Email:

* Category:

Company:

 
Captcha
Answer:

 

 

CNP Archive

Researching companies or people in the CNP industry? Search our past coverage for targeted news and information.

Search here