|
Market Research Report
Guarding Precious Cargo: The Evolving Function of Compliance Initiatives (CISP/SDP/PCI) in Protecting Cardholder Data
|
This publication has been discontinued on July 19, 2011.
Abstract
When the card associations publish directives, it is not an option for their members to ignore
them. The message from the associations is simple: turn your back on their mandates and pay the
consequences. Ignorance is, in these cases, far from bliss.
This research report complements prior research by Mercator Advisory Group with coverage of
security initiatives that card associations are mandating for their members. It is vital that
stakeholders are aware of their responsibilities for preserving the integrity of not just their
location, but the entire payments value chain.
Table of Contents
1. Introduction
2. Card Association Security Compliance Programs
- 2.1. Visa CISP (Cardholder Information Security Program)
- Annual Report on Compliance.
- System Perimeter Scan
- Annual Compliance Questionnaire
- 2.2. MasterCard SDP (Site Data Protection)
- 2.3. The Payment Card Industry (PCI) Data Security Standard
- 2.4. Card Data Compliance Programs from Discover, American Express, JCB and Diners Club
3. Security Compliance Vendors
- 3.1. Ambiron
- 3.2. SecurityMetrics
- 3.3. TrustWave
- 3.4. Ubizen
- 3.5. VeriSign
4. Compliance = the Cost of Doing E-Business
- 4.1. Cardholders Response to Security Breaches
- 4.2. Repercussions for Merchants, Acquirers and Service Providers
5. The Evolution of Security Compliance
|
