WebApp Sec mailing list archives

Fwd: A few related links: (Was Re: MasterCard backs off Security, Leave Cardholders at Risk)

From: "Ken Adler - QDSP, CISSP, PMP, CISA" <ken.adler () gmail com>
Date: Fri, 9 Jun 2006 11:45:52 -0700

Great conversation.... and very indicative of the confusion
surrounding PCI.  Lots of acronyms and "subtle" rules about who has to
do what when.... and these rules (and Visa's enforcement of the rules)
are a moving target.

A few links...

The "Security *Audit* Procedures" mentioned by Craig are available at
http://snipurl.com/rkot     on the  Visa.com/CISP site.

A "webi-fied" version is located  at http://snipurl.com/rkoy .   A
short flash demo on using the web-ified version is at
http://snipurl.com/rkoz

A "semi-internal" memo that Visa USA sent to all QDSC's (companies
authorized to do PCI Audits) responding to the "PCI  backing off
Security, Leaves Cardholders at Risk"  meme that started floating
around in early May is located  at  http://snipurl.com/rkp1    on the
PCI Auditor discussion group at pciFile.ORG.


Regards

--
Ken Adler - Visa QDSP, CISSP, PMP, CISA, ITSM
510-290-5806 (cell)
Ken () adler net

Check out  pciFile.com  and pciFile.ORG !

-------------------------------------------------------------------------
Sponsored by: Watchfire

Watchfire's AppScan is the industry's first and leading web applicationsecurity testing suite, and the only solution to provide comprehensiveremediation tasks at every level of the application. Change the way youthink about application security testing - See for yourself.Download a Free Trial of AppScan 6.0 today!


https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF
--------------------------------------------------------------------------

Current thread:

Fwd: A few related links: (Was Re: MasterCard backs off Security, Leave Cardholders at Risk) Ken Adler - QDSP, CISSP, PMP, CISA (Jun 09)