PCI 4.0 - Winn Schwartau - PSW #825
17 April - 2 hours 7 minsVersion 4.0 of the Payment Card Industry Data Security Standard (PCI DSS) puts greater emphasis on application security than did previous versions of the standard. It also adds a new “customized approach” option that allows merchants and other entities to come up with their own ways to comply with requirements, and which also has implications for application security. Specifically, PCI DSS 4.0 requires that by March 31, 2025, more testing of public-facing applications related to payment processing or other activities be considered “in scope” for compliance. Generally, any system that touches payment-card data is in scope for PCI DSS compliance, whether or not the system or function is public...
Series Episodes
AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN #382
37 mins
30 April Finished
Why Companies Continue to Struggle with Supply Chain Security - Melinda Marks - ASW #283
1 hour 19 mins
30 April Finished
TikTok, Flowmon, Cisco, Brokewell, RuggedCom, Deepfakes, Non-Competes, Aaran Leyland - SWN #381
38 mins
26 April Finished
Advising The President On Cyber-Physical Resilience - Philip Venables - PSW #826
2 hours 50 mins
25 April Finished
Autonomous - I don't think that word means what you think it means - Adam Shostack, Ely Kahn - ESW #359
1 hour 57 mins
25 April Finished
