• Latest
  • All
  • How To
visa card

PCI DSS 3.0 Aims for Comprehensive Security Approach

November 18, 2013
Apple Drags OpenAI to Court Over Stolen Hardware Secrets

Apple Drags OpenAI to Court Over Stolen Hardware Secrets

July 13, 2026
High Court ruling: Safaricom 60% and DTB 40% Liable in KSh 4.42M SIM-swap Fraud Case

Kenyan High Court Rules Safaricom and DTB Must Pay Customer KES 4.42M Withdrawn After SIM Swap Fraud

July 13, 2026
Period Tracker

Period Tracker: An App That Prioritizes Simplicity and Privacy

July 11, 2026
How to Block Muse Image From Downloading and Remixing Your Reels

Meta Halts Muse Image After Outcry Over Risks of AI-Generated Content

July 11, 2026
DHgate Tablet Cases deals
Biggest Taxpayers Remain a Small Group of Formal Businesses, KRA Data Shows

Biggest Taxpayers Remain a Small Group of Formal Businesses, KRA Data Shows

July 11, 2026
How to Block Muse Image From Downloading and Remixing Your Reels

Muse Image: How to Block Others From Generating AI Content Using Your Instagram Posts

July 11, 2026
African Game Studios Can Now Apply for Google’s New $1 Million Fund

Google Tightens Play Store Terms Around Data, Sharing, and Billing

July 10, 2026
IEBC Owns Up to Cracks in 2022’s Dispute Resolution Process, Eyes Fixes Before 2027

IEBC Owns Up to Cracks in 2022’s Dispute Resolution Process, Eyes Fixes Before 2027

July 10, 2026
Emissions test

New Bill Would Force Kenyan Motorists to Test Vehicle Emissions Every Year

July 9, 2026
SpaceXAI Grok 4.5

Elon Musk Rebrands xAI as SpaceXAI and Launches Grok 4.5

July 9, 2026
KOKO Networks Puts Its Ethanol Empire Up For Sale

KOKO Networks Puts Its Ethanol Empire Up For Sale

July 8, 2026
Betting

New Betting Rules Let Families Request Gambling Bans for Loved Ones

July 8, 2026
Techweez | Tech News, Reviews, Deals, Tips and How To
  • News
  • Entertainment
  • Reviews
  • Features
  • Editorial
No Result
View All Result
Techweez | Tech News, Reviews, Deals, Tips and How To
  • News
  • Entertainment
  • Reviews
  • Features
  • Editorial
No Result
View All Result
Techweez | Tech News, Reviews, Deals, Tips and How To
No Result
View All Result

PCI DSS 3.0 Aims for Comprehensive Security Approach

Carlos Ageng'o by Carlos Ageng'o
November 18, 2013
in News
Reading Time: 3 mins read
248
0
visa card

visa card
PCI Security Standards Council (PCI SSC) has published version 3.0 of the PCI Data Security Standard (PCI DSS) and Payment Application Data Security Standard (PA-DSS) for storage and processing of payment card data. Taking effect from PCI 3.0 takes effect from January 1, 2014 with an objective of moving the industry from mere compliance to a comprehensive security approach to payment card security.

Some requirements of PCI 3.0 involves putting in measures for card skimming and point-of-sale; secure coding practices; and the use of unique authentication credentials. Closer attention will now be paid to the physical point-of-sale (POS) systems to deter card skimming. Formal assessments for PCI compliance by Qualified Security Assessors (QSA’s) will now include questions about the merchant’s programs to educate personnel on the threat of card skimming and fraud.

“The No. 1 thing to work on is the need to be aware of security throughout the organization and to educate across the enterprise so that everyone shares the responsibility to protect cardholder data,” said Troy Leach, CTO at the PCI Security Standards Council, in an interview. “The technology evolves, but the people and processes inside the organization remain the same. So we need ongoing awareness about accepting and storing cardholder data so that we can come together as a community to ensure the security and safety of that data.”

“We have an underlying aim to make PCI a little more user-friendly than it was,” said Bob Russo, general manager, PCI SSC. “We want to increase education and awareness, and we want to be more flexible. And especially for smaller merchants that outsource many of their applications, we want to stress that security is a shared responsibility, even if a third-party is doing data storage for you.”

The Open Web Application Security Project (OWASP) has done a good job of outlining application vulnerabilities associated with PCI. Many software developers working on PCI standards are however uninformed of the best practices outlined by OWASP. This leads to insecure coding practices resulting in applications that allow criminals to easily access customer data at POS systems. PCI 3.0 now requires developres to verify the source code’s integrity in order for the application to withstand well-known security flaws.

.

“What we’re seeing through all of the breach reports, technology moves on and things get more complex – but the basic exploits are still being used and used successfully, like SQL injection and password issues,” Russo said. “If we can move the needle a little even on the default password problem, then we’re way ahead. So we still have to deal with the low-hanging fruit even as more ingenious ways of stealing data are created.”

Version 3.0 requires vendors to use unique authentication credentials for each customer for each merchant environment. Certificates, security tokens and smart cards linked to an individual accounts will now be restricted to the intended user. In the event of a data breach, if a hacker gains access to one account, this makes it hard for them to access the details from other accounts within the environment.

PCI 3.0 also makes distinctions on how to tackle malware. The Council advises that continual evaluation of malware threats should be conducted for all systems, even those that aren’t commonly affected.

“This new version incorporates more context than ever before as to how merchants can meet the requirements as they’re written,” said Leach. “That’s going to be a big improvement. We recognize that the merchants are aware of their responsibility – but they may not be as aware as they should be of how to best handle card data.”

SendShare146Tweet92
Carlos Ageng'o

Carlos Ageng'o

Bringing you news on information systems, business intelligence and IT innovations. Contact me on @aKhadiemik and c [dot] agengo [at] techweez [dot] com

Related Posts

Apple Drags OpenAI to Court Over Stolen Hardware Secrets

Apple Drags OpenAI to Court Over Stolen Hardware Secrets

July 13, 2026
High Court ruling: Safaricom 60% and DTB 40% Liable in KSh 4.42M SIM-swap Fraud Case

Kenyan High Court Rules Safaricom and DTB Must Pay Customer KES 4.42M Withdrawn After SIM Swap Fraud

July 13, 2026
Period Tracker

Period Tracker: An App That Prioritizes Simplicity and Privacy

July 11, 2026
How to Block Muse Image From Downloading and Remixing Your Reels

Meta Halts Muse Image After Outcry Over Risks of AI-Generated Content

July 11, 2026
Biggest Taxpayers Remain a Small Group of Formal Businesses, KRA Data Shows

Biggest Taxpayers Remain a Small Group of Formal Businesses, KRA Data Shows

July 11, 2026
How to Block Muse Image From Downloading and Remixing Your Reels

Muse Image: How to Block Others From Generating AI Content Using Your Instagram Posts

July 11, 2026

Latest

Apple Drags OpenAI to Court Over Stolen Hardware Secrets

Apple Drags OpenAI to Court Over Stolen Hardware Secrets

July 13, 2026
High Court ruling: Safaricom 60% and DTB 40% Liable in KSh 4.42M SIM-swap Fraud Case

Kenyan High Court Rules Safaricom and DTB Must Pay Customer KES 4.42M Withdrawn After SIM Swap Fraud

July 13, 2026
Period Tracker

Period Tracker: An App That Prioritizes Simplicity and Privacy

July 11, 2026
How to Block Muse Image From Downloading and Remixing Your Reels

Meta Halts Muse Image After Outcry Over Risks of AI-Generated Content

July 11, 2026
Biggest Taxpayers Remain a Small Group of Formal Businesses, KRA Data Shows

Biggest Taxpayers Remain a Small Group of Formal Businesses, KRA Data Shows

July 11, 2026
How to Block Muse Image From Downloading and Remixing Your Reels

Muse Image: How to Block Others From Generating AI Content Using Your Instagram Posts

July 11, 2026

Best devices

Best Infinix Phones of 2025

Best Infinix Phones of 2025: Budget Prices With Premium Features

December 31, 2025

The Best Infinix Accessories Worth Buying in 2025

November 26, 2025

Best Budget Wireless Earbuds To Buy in Kenya (2025)

October 8, 2025

Samsung Galaxy A36 5G vs Samsung Galaxy A56 5G: Comparison Review

August 29, 2025

Infinix Hot 60 Pro+ vs Infinix Hot 60i: Comparison Review

August 22, 2025

Best Budget Smartwatches To Buy in Kenya 2025

February 13, 2025

Techweez is where tomorrow’s tech stories break today, thanks to intelligent analysis, real-world insight, and visionary storytelling.

Follow Us

Editorials

Period Tracker: An App That Prioritizes Simplicity and Privacy

Inside Bumble, the Dating App Where Women Call the Shots

Locket: Photo Sharing App With No Feed, No Likes, and No Algorithms

Couple Joy: A Long-Distance Dating App That Builds Intimacy in Small Daily Acts

Airbuds: The App That Turns Your Music Into a Social Feed

Kenya Might Need to Crack Down on Wealth Porn Like China

More News

Google Tightens Play Store Terms Around Data, Sharing, and Billing

IEBC Owns Up to Cracks in 2022’s Dispute Resolution Process, Eyes Fixes Before 2027

New Bill Would Force Kenyan Motorists to Test Vehicle Emissions Every Year

Elon Musk Rebrands xAI as SpaceXAI and Launches Grok 4.5

KOKO Networks Puts Its Ethanol Empire Up For Sale

New Betting Rules Let Families Request Gambling Bans for Loved Ones

  • Terms Of Use
  • Techweez Brand
  • Privacy & Policy
  • Contact Us

© 2024 Techweez - Palahala Media Group may earn a commission when you buy through links on our sites.
A Palahala Media Group Brand. All rights reserved.
.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

Techweez | Tech News, Reviews, Deals, Tips and How To
Crunchy Cookies 🍪 Ahead!

Hey there! Just a heads-up: we're big fans of cookies - both the digital and edible kind! 🍪 We use our cookies and some from third parties to ensure your browsing experience on our site is smooth sailing and secure.

 

But wait, there's more! We also use cookies to gather stats and insights on how you navigate our site. It's like getting a behind-the-scenes peek at your digital adventures!

 

Don't worry, you're in control. You can adjust your cookie settings anytime to suit your preferences. Feeling curious? Dive into our Privacy Policy for all the juicy details. Happy browsing! 🚀

Functional Always active
Listen, this legal stuff is about as exciting as watching paint dry. But it basically says we only use your stuff for what you asked us to do, and nobody else gets to peek!
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
It's those sneaky cookie crumbs websites leave behind to count visitors, like counting ants at a picnic! Totally harmless, just for fun facts. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
Hey there! Just letting you know we use some fancy gizmos to remember your preferences. This way, we can show you ads that are, well, not completely bananas.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Make cookies
{title} {title} {title}
Techweez | Tech News, Reviews, Deals, Tips and How To
Crunchy Cookies 🍪 Ahead!
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
Listen, this legal stuff is about as exciting as watching paint dry. But it basically says we only use your stuff for what you asked us to do, and nobody else gets to peek!
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
It's those sneaky cookie crumbs websites leave behind to count visitors, like counting ants at a picnic! Totally harmless, just for fun facts. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
Hey there! Just letting you know we use some fancy gizmos to remember your preferences. This way, we can show you ads that are, well, not completely bananas.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Make cookies
{title} {title} {title}
No Result
View All Result
  • News
  • Reviews
  • Features
  • Editorial
  • Automotive
  • Entertainment

© 2024 Techweez - Palahala Media Group may earn a commission when you buy through links on our sites.
A Palahala Media Group Brand. All rights reserved.
.