Endpoint Security Considerations for Achieving PCI Compliance
Electronic theft of personal and financial data is a serious and growing problem that drives up costs for credit card issuers and the merchants they serve, and undermines consumer confidence and loyalty. In response, the Payment Card Industry has developed the PCI Data Security Standard (PCI DSS). This multi-faceted security standard includes requirements for endpoint security, security management, policies, procedures, network architecture, software design and other critical protective measures. The old adage 'A chain is only as strong as its weakest link' provides the best analogy for challenges that merchants must address when planning to comply with new PCI standards. Recent studies demonstrate that the endpoints of a payment card processing system are in fact that 'Weakest link'.