Mar 31 2009

House Subcommittee on Emerging Threats, Cybersecurity, and Science and Technology

Published by at 1:34 pm under Government,PCI

PCI was under fire today during a US House of Representatives subcommittee meeting.  If you didn’t watch the meeting while it was in progress or watch the tweets myself, Anton Chavukin and a few other security professionals were sending, you missed what will end up being a very important meeting for the future of PCI.  Our representatives asked some very pointed questions and both Robert Russo from the PCI Council and Joeseph Majka from Visa were put on the hot seat.  The representatives from Michaels and the National Retail Federation definitely were in an adversarial position to the PCI Council and the card brands.  It made for great spectator sport. 

The video’s supposed to be available soon, so if you’re interested in PCI, take a little while and watch this. It was only the opening round in what promises to be a very interesting set of meetings to determine the future of PCI. 

Do the Payment Card Industry Data Security Standards reduce Cybercrime?

[Slashdot] [Digg] [Reddit] [] [Facebook] [Technorati] [Google] [StumbleUpon]

One response so far

One Response to “House Subcommittee on Emerging Threats, Cybersecurity, and Science and Technology”

  1. idblackboxon 31 Mar 2009 at 9:04 pm

    Wow, very nice find in way of video! I will watch it tomorrow, but the title alone has been a question of mine since I began working in the PCI field. I have always thought that PCI is a really great beginning point, minimum requirements or best practices set of “rules”, but feel all to often, businesses halt any further tightening of their environments once PCI has been fulfilled.

    PCI reminds me of gym class in high school – boys had to do 5 pull ups and girls had to do 2 pull ups. Most boys and girls did exactly that and nothing more while a few individuals did as much as they truly could do. PCI is not a destination, rather, it is a guide to assist a business in further tightening its environment.

    The PCI DSS lifespan is pretty new and it is expected there is going to be continued growth and improvements, but as it stands now, there are too many holes and aspects left unchecked. The council better hurry to close these up or else face more “compliant” businesses becoming victim to breaches.

%d bloggers like this: