WebApp Sec mailing list archives
Fwd: A few related links: (Was Re: MasterCard backs off Security, Leave Cardholders at Risk)
From: "Ken Adler - QDSP, CISSP, PMP, CISA" <ken.adler () gmail com>
Date: Fri, 9 Jun 2006 11:45:52 -0700
Great conversation.... and very indicative of the confusion surrounding PCI. Lots of acronyms and "subtle" rules about who has to do what when.... and these rules (and Visa's enforcement of the rules) are a moving target. A few links... The "Security *Audit* Procedures" mentioned by Craig are available at http://snipurl.com/rkot on the Visa.com/CISP site. A "webi-fied" version is located at http://snipurl.com/rkoy . A short flash demo on using the web-ified version is at http://snipurl.com/rkoz A "semi-internal" memo that Visa USA sent to all QDSC's (companies authorized to do PCI Audits) responding to the "PCI backing off Security, Leaves Cardholders at Risk" meme that started floating around in early May is located at http://snipurl.com/rkp1 on the PCI Auditor discussion group at pciFile.ORG. Regards -- Ken Adler - Visa QDSP, CISSP, PMP, CISA, ITSM 510-290-5806 (cell) Ken () adler net Check out pciFile.com and pciFile.ORG ! ------------------------------------------------------------------------- Sponsored by: WatchfireWatchfire's AppScan is the industry's first and leading web application security testing suite, and the only solution to provide comprehensive remediation tasks at every level of the application. Change the way you think about application security testing - See for yourself. Download a Free Trial of AppScan 6.0 today!
https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF --------------------------------------------------------------------------
Current thread:
- Fwd: A few related links: (Was Re: MasterCard backs off Security, Leave Cardholders at Risk) Ken Adler - QDSP, CISSP, PMP, CISA (Jun 09)