?

Log in

No account? Create an account
PCI DSS is pissing me off - Drinking from the Fire Hose — LiveJournal
and trying not to drown

Mrs_Sweetpeach
Date: 2009-02-27 13:10
Subject: PCI DSS is pissing me off
Security: Public
Location:work
Mood:annoyedannoyed
Music:nothing but computer fans
Tags:work
Have any of you had to deal with PCI DSS (Payment Card Industry Data Security Standards)? The company work uses to process credit card payments claims that the various credit card associations have made new rules and that as a result we'll have to jump through a bunch of hoops to be able to keep accepting credit cards. I just completed a survey that was obviously written by a committee of computer programmers.
Post A Comment | 8 Comments | | Link






(no subject) - (Anonymous)
Mrs_Sweetpeach
User: mrs_sweetpeach
Date: 2009-02-28 03:41 (UTC)
Subject: (no subject)
I'd like to, but I don't think it can be done. Imagine 127 questions like this one: "Are logs for external-facing technologies written onto a log server on the internal LAN?"
Reply | Parent | Thread | Link



Jen
User: greenlady2
Date: 2009-02-28 08:15 (UTC)
Subject: (no subject)
"Are logs for external-facing technologies written onto a log server on the internal LAN?"

But of course. If the technologies are external-facing, they must be written internally. Right?

And you do know that the camel is an animal designed by a committee.
Reply | Parent | Thread | Link



Minotaur
User: minotaurs
Date: 2009-02-28 00:31 (UTC)
Subject: (no subject)
I know that we're having to get new machines for our stores to comply with the new rules - something about the number of data tracks actually being used - but other than that, not really.
Reply | Thread | Link



Mrs_Sweetpeach
User: mrs_sweetpeach
Date: 2009-02-28 04:00 (UTC)
Subject: (no subject)
You're lucky. The requirements for companies that don't use card readers are a nightmare. (We can't use machines because we provide a business-to-business service to clients all over the world and do not have physical access to them or their credit cards.)
Reply | Parent | Thread | Link



jebra
User: jebra
Date: 2009-02-28 03:42 (UTC)
Subject: (no subject)
No way.

It was written by computer science drop-outs.
Reply | Thread | Link



Mrs_Sweetpeach
User: mrs_sweetpeach
Date: 2009-02-28 04:02 (UTC)
Subject: (no subject)
*sigh* Worse. I think it was written by a committee of computer science drop-outs.
Reply | Parent | Thread | Link



Bob
User: bwittig
Date: 2009-03-01 15:46 (UTC)
Subject: (no subject)
I submit:
"Written by the managers of the teams which comprised the committee of computer science drop-outs."
Reply | Parent | Thread | Link



Mrs_Sweetpeach
User: mrs_sweetpeach
Date: 2009-03-02 03:24 (UTC)
Subject: (no subject)
Score!
Reply | Parent | Thread | Link



browse
my journal
August 2019