PCI Data Security Standard

PCI DSS is a mandatory industry standard established in January 2005 that impacts all organizations that accept credit and debit cards. PCI DSS requires that cardholder data, which includes Primary Account Numbers (PAN), card verification values (CVV), and PIN numbers, be processed and stored on secure systems on secure networks.

The current standard, PCI DSS version 1.2, defines 6 objectives with 12 high level requirements.

Enlarge

Version 1.2 became effective on October 1, 2008 and includes several significant additions:

Requirement 5 -	Requires the identification of all forms of malicious software, not limited to just anti-virus
Requirement 7 -	Specifies the implementation of an automated, role-based access control system
Requirement 11 -	Defines new test procedures to protect wireless networks

For more details on PCI DSS see
About the PCI Data Security Standard (PCI DSS)

eTIPS
eTIPS Techsheet
OnGuard Agent