| There is a wide range of payment processing | | | | control measures. It also regularly monitors and tests |
| software available across the globe. The need for | | | | networks. It is also important in that it maintains a full |
| extremely reliable software in this area has grown | | | | information security policy. |
| rapidly as the internet has increased in popularity - as | | | | It is a requirement that merchants who are at one |
| so many transactions now take place across the net. | | | | end of the payment processing software process |
| As those who are intent on committing fraud | | | | provide verification of PC-DSS compliance for their |
| continue to do so, the advances in online security | | | | own payment systems. PCI-DSS requirements vary a |
| have had to be kept up to date so that people's | | | | great deal, and might simply involve filling out a |
| personal data and indeed money is fully protected. In | | | | questionnaire or selecting a qualified security assessor |
| this article we'll examine some of the elements that | | | | (abbreviated to QSA) and conducting an on-site |
| make payment processing software effective. | | | | security audit of a formal nature. |
| A good piece of payment processing software will | | | | The aim of good payment processing software is to |
| comply with the PCI Security Standards Council. PCI | | | | provide a safe and fast payment system. Speed is |
| stands for Payment Card Industry in this case, and | | | | also a very big issue - although not as big an issue as |
| the council represents an important method of | | | | security. If there were any major breach involving |
| ensuring that online transactions are as secure as | | | | payment systems, then the whole online industry |
| possible. This kind of validation is accepted by all Card | | | | could be adversely affected. Big names such as |
| Brands, Processors and indeed Acquirers. A good | | | | MasterCard and Visa are always mindful of the fact |
| piece of software will successfully complete a | | | | that their continuing success is built on security - this |
| rigorous PA-DSS audit. | | | | is what everyone relies on them for. |
| So what is the PCI Data Security Standard actually | | | | As more and more people turn to the internet to |
| for? It's specific aims are primarily to protect | | | | purchase their goods, advances in payment |
| cardholder data. It maintains a vulnerability | | | | processing software will no doubt become more |
| management program, which will help to identify any | | | | important in order to put people's minds at rest when |
| risks associated with the payment system. It | | | | doing their online shopping, whether it is grocery |
| promotes the implementation of strong access | | | | shopping or larger purchases such as hi-fi systems. |