ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Management Toolkit

Credit card companies team up for security

Erica Ogg CNET News.com

Published: 08 Sep 2006 13:15 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

The five major credit card companies have teamed up in the interest of better security.

American Express, Discover Financial Services, JCB, MasterCard Worldwide and Visa International announced Thursday the creation of an organisation to develop and maintain security standards for credit and debit card payments. It's the first time the five brands have agreed on a single, common framework.

The newly formed Payment Card International (PCI) Security Standards Council will manage the PCI Data Security Standard, first established in January 2005 with the intention of making its implementation more efficient for all parties involved in a payment card transaction. That includes merchants, payment processors, point-of-sale vendors, financial institutions and more than a billion card holders worldwide.

The companies have come together despite being in competition with each other because they say ensuring better security will benefit everyone.

"First of all, it's to protect the information of our mutual customers and to make the process of data security compliance easier," said Rob Tourt, vice president of network services for Discover.

Having a single data security standard is a critical issue for the entire industry and will simplify the process, said Brian Buckley, Visa's senior vice president of international risk management.

"Our view is that this is first and foremost an important initiative to get data security in place for payment cards," he said.

Having the common accepted set of rules should foster broader compliance, said Bruce Rutherford, MasterCard's vice president of payments. Those rules include instructions on proper data encryption, common technical standards and security audit procedures.

The first action of the new council was to update the PCI security standard, which was promised in May. The revision gives instructions for how to implement the new standards and clarifies language that was previously considered vague. For example, terms such as "periodically" and "regularly" were swapped for definite deadlines like "annually" or "quarterly" where appropriate. A statement released by the newly formed council said the revisions were the result of feedback from vendors, merchants and payment processors.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with HP

Did you find this article useful?
66 out of 114 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Management


Company/Topic Alerts

Create a new alert from the list below:







Related Jobs

Council Tax Manager - West Midlands - Contract

My public sector client based in the West Midlands is seeking a Council Tax Manager to fulfil an initial six-month contract within a months time. The ...

.Net Architect - Online Payment / Financial Systems

You therefore will have worked on a similar project before and be aware of the need to make the System PCI compliant. The successful candidate will ...

Prime Services - Sales, London, Origination. Vice President

One of the worlds leading prime brokers is looking for a VP level Sales/Origination specialist to strengthen their European presence.

Discussions

garima.pawa garima.pawa

Advice on Industry sector choice neede...

Monday 12 May 2008, 2:24 PM

1 post
defyant defyant

IPv6 hype suggests real problems

Monday 12 May 2008, 1:27 PM

6 comments
ben.d.robinson ben.d.robinson

Firefox

Monday 12 May 2008, 1:07 PM

2 comments
Brian Murray Brian Murray

and the next step ....

Monday 12 May 2008, 11:25 AM

1 comment

View All