Category: Blog

PCI Secure Software Framework Uptake Tracker

I’ve written elsewhere about the initial uptake of the PCI Secure Software Framework. We’re rapidly approaching the point in time where the PCI PA-DSS will close for new submissions, and the PCI SSF will be the only show in town for PCI software. This page will be updated on approximately a monthly basis, to track…

Read the full article

How to do PCI DSS in the Cloud

Cloud computing poses some unique challenges for building and maintaining secure systems. Whenever somebody says they’re using “the cloud”, remember what they’re really saying is that they’re using “someone else’s computer”. When you remember that the cloud is really just someone else’s computer, it drives home how difficult security can be. In this new model,…

Read the full article