Slashdot is powered by your submissions, so send in your scoop


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Comment Re:PCI-DSS Scope? (Score 1) 106

The PCI-DSS spec is used by organizations to evaluate their infrastructure as to whether it is in compliance. I've read the entire v2 doc before, and unlike most technical specifications it is more of a best practices guide for secure transport and storage for PCI data. This includes everything from switches, routers, servers, to tape backup and everything in between. In Microsoft's case this includes the Xbox itself and everything within their datacenters that PCI data flows through. Part of the spec states that storage of PCI data should be avoided if possible and gives recommendations around storage when it is deemed necessary for secure storage. Things like encrypted filesystems using hardware security modules help accomplish this. To jrj102 comment, it is very likely M$ chose not to store the data on the Xbox itself, but instead store it within their own network tied to your account in some way and thus greatly reducing risk.

Slashdot Top Deals

Economists can certainly disappoint you. One said that the economy would turn up by the last quarter. Well, I'm down to mine and it hasn't. -- Robert Orben