Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Comment Re:PCI Compliance? (Score 1) 402

No, such companies can be and are PCI-DSS compliant as long as their declared PCI information security policy includes the transmission of payments data to the DHS (and there certainly is space for such things in PCI to meet regulatory requirements), that transfers to DHS are suitably cryptographically protected if over an public network, and as long as the company informs the DHS in their role as a PCI "third party" of their responsibility to also store payments data securely under the PCI. Of course, whether the DHS are *actually* following section 9 of the PCI-DSS by mailing the guy his payment data is very questionable.

Slashdot Top Deals

Mathemeticians stand on each other's shoulders while computer scientists stand on each other's toes. -- Richard Hamming

Working...