A Survey of Payment Card Industry Data Security Standard

@article{Liu2010ASO,
  title={A Survey of Payment Card Industry Data Security Standard},
  author={Jing Liu and Yang Xiao and Hui Chen and Suat {\"O}zdemir and S. Dodle and V. Singh},
  journal={IEEE Communications Surveys \& Tutorials},
  year={2010},
  volume={12},
  pages={287-303}
}
  • Jing Liu, Yang Xiao, +3 authors V. Singh
  • Published 1 July 2010
  • Computer Science
  • IEEE Communications Surveys & Tutorials
Usage of payment cards such as credit cards, debit cards, and prepaid cards, continues to grow. Security breaches related to payment cards have led to billion dollar losses annually. In order to offset this trend, major payment card networks have founded the Payment Card Industry (PCI) Security Standards Council (SSC), which has designed and released the PCI Data Security Standard (DSS). This standard guides service providers and merchants to implement stronger security infrastructures that… Expand
Implementing the Payment Card Industry (PCI) Data Security Standard (DSS)
Underpinned by the rise in online criminality, the payment card industry (PCI) data security standards (DSS) were introduced which outlines a subset of the core principals and requirements that mustExpand
An Integrated Security Governance Framework for Effective PCI DSS Implementation
TLDR
This paper analyses relevant IT governance and security frameworks/standards used in IT assurance and security to propose an integrated framework for ensuring effective PCI DSS implementation and develops an integrated comprehensive security governance framework for 'information security' rather than data protection. Expand
Security Assessment of Payment Systems under PCI DSS Incompatibilities
TLDR
This paper presents a security assessment framework for payment systems under PCI DSS incompatibilities, and analyzes a case study to evaluate the proposal and to provide some guidelines to security experts for assessment of PCI D SS compliance. Expand
General Cybersecurity Maturity Assessment Model: Best Practice to Achieve Payment Card Industry-Data Security Standard (PCI-DSS) Compliance
The use of technology in the era of the Industrial Revolution 4.0 is essential, marked by the use of technology in the economy and business. This situation makes many companies in the payment sectorExpand
An Efficient Secure Electronic Payment System for E-Commerce
TLDR
This article aims to develop an efficient and secure electronic payment protocol for e-commerce where consumers can immediately connect with the merchant properly and has been found that the protocol has much improved security effectiveness in terms of confidentiality, integrity, non-repudiation, anonymity availability, authentication, and authorization. Expand
A framework for ID fraud prevention policies in E-tailing sector
Abstract Identity fraud could lead to loss of revenue, causes operational problems to e-tailers and damages the firm's reputation. Most research in this domain focuses on the security technologies orExpand
Best Practices to Obtain and Maintain PCI Compliance
PCI developed security standards to guide merchants in ensuring sensitive cardholder data is protected. However, data breaches continue, affecting the data of billions of customers and negativelyExpand
The Implementation of a Full EMV Smartcard for a Point-of-Sale Transaction and Its Impact on the PCI DSS
TLDR
If the combined dynamic data authentication (CDA) card variant of the EMV payment card is deployed in a full EMV environment for point of sale terminal (POS) transaction, it becomes unnecessary to comply with the Payment Card Industry Data Security Standard (PCI DSS). Expand
The power of credit card numbers and enhanced CVVs
ii Declaration These studies were conducted under the supervision of Professor Tito Santos Silva. The work presented in this thesis is the result of original research carried out by myself, inExpand
Electronic Payments Workflow Optimization in Fashion E-tail
Electronic payments are a crucial part of E-commerce. From the Customer perspective, being able to easily pay without incidents improves the shopping experience. Nevertheless, sometimes CustomerExpand
...
1
2
3
...

References

SHOWING 1-10 OF 29 REFERENCES
Information security, data breaches, and protecting cardholder information: facing up to the challenges
On September 13 and 14, 2006, the Payment Cards Center of the Federal Reserve Bank of Philadelphia and the Electronic Funds Transfer Association (EFTA) hosted a conference entitled “InformationExpand
The Merchant-Acquiring Side of the Payment Card Industry: Structure, Operations, and Challenges
On January 19, 2007, the Payment Cards Center of the Federal Reserve Bank of Philadelphia sponsored a workshop led by Marc Abbey, managing partner at First Annapolis Consulting, to discuss theExpand
Values and Organizational Structure
Recent developments in organizational theory emphasize the need to examine the relationship between organizational values and structure. Values underpin organizational structure and give it meaning.Expand
Payment Card Industry Data Security Standard
Assessing & Implementing Compliance Management for PCI DSS " [Online]. Available: http://www.endava.com/ resources/Endava Whitepaper -Assessing and Implementing Compliance Management for PCI DSS.pdf
  • Assessing & Implementing Compliance Management for PCI DSS " [Online]. Available: http://www.endava.com/ resources/Endava Whitepaper -Assessing and Implementing Compliance Management for PCI DSS.pdf
  • 2007
IT Audit Checklist Series
  • IT Compliance Institute
  • 2007
September). “Transparency Data Encryption
  • 2005
Vormetric White Paper: Protecting 'Data at Rest' with CoreGuard
  • Vormetric White Paper: Protecting 'Data at Rest' with CoreGuard
  • 2005
PCI Certification
  • PCI Certification
  • 2008
PCI Quick Reference Guide
  • Oct, 2008, Available: https://www.pcisecuritystandards.org/pdfs/pci ssc quick guide.pdf
  • 2008
...
1
2
3
...