WebApp Sec mailing list archives

Re: PCI DSS Compliance

From: Roberto Tanara <tanara () protechta it>
Date: Wed, 21 Dec 2005 09:50:15 +0100

Craig Wright wrote:

The company seeking the test is seeking compliance not necessary security. These are very different things.

Maybe I am missing something, but as a customer, how could I trust acompany that seeks "compliance not necessary security"? Does thecompliance make me feel better if something bad happens?


--
Roberto Tanara
Protechta Information Security

Current thread:

RE: PCI DSS Compliance, (continued)
- RE: PCI DSS Compliance Steven Jones (Dec 16)
- Re: PCI DSS Compliance null0 (Dec 18)
- RE: PCI DSS Compliance Craig Wright (Dec 18)
  - Re: PCI DSS Compliance Pete Herzog (Dec 18)
- RE: PCI DSS Compliance Craig Wright (Dec 19)
  - Re: PCI DSS Compliance Pete Herzog (Dec 20)
    - RE: PCI DSS Compliance Lyal Collins (Dec 20)
    - Re: PCI DSS Compliance Pete Herzog (Dec 29)
    - RE: PCI DSS Compliance Lyal Collins (Dec 29)
- RE: PCI DSS Compliance Craig Wright (Dec 20)
  - Re: PCI DSS Compliance Roberto Tanara (Dec 21)
    - RE: PCI DSS Compliance Lyal Collins (Dec 21)
- RE: PCI DSS Compliance Craig Wright (Dec 22)
  - Re: PCI DSS Compliance Roberto Tanara (Dec 22)