The Lazy Genius

Security News and Brain Dumps from an IBM Tivoli Security Consultant

« Security metrics: more is not better
Why The TCP Attack Is Likely Bad, But Not That Bad »

PCI DSS version 1.2 differences and updates

Posted by Xavier Ashe on October 3, 2008

On October 1, 2008 the PCI SSC released version 1.2 of the PCI DSS requirements.  There are a number of changes as outlined previously in the update document.  The PCI SSC has established a life cycle process that will ensure the PCI DSS standard is revised and updated on a two year cycle.  What follows is a detailed outline of the differences between version 1.1 and 1.2 (some that have not been discussed previously) and the implications of those changes. (Unless otherwise noted, those items in quotations are taken directly from the PCI DSS or the update document linked above.)

Good dissection of the new reg from the PCI Blog.

This entry was posted on October 3, 2008 at 9:46 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <pre> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

« Security metrics: more is not better
Why The TCP Attack Is Likely Bad, But Not That Bad »