Items tagged with PCI Security Standards Council
The PCI (payment card industry) Security Standards Council released a supplement to its PCI Data Security Standard (DSS) guidelines with a document on tokenization. (Version 2.0 of the PCI DSS was released in October 2010.) Put simply, tokenization allows merchants to generate non-sensitive values as a stand-in for Primary Account Numbers (PANs), thereby obviating the need for a merchant to keep those sensitive numbers in its cardholder data environment (CDE). There are many tokenization products on the market but no industry standards for implementing them. The PCI Security Standards Council stated... Read more...