Dara Security

Recent Articles

Changes to PCI DSS 3.2

The PCI DSS 3.2 standard includes many improvements from previous versions, all of which aim to increase cardholder data protection.  We have seen the standard evolve from version 1.1 in 2006 which outlined the basics of the twelve PCI requirements to the current version 3.2 where the twelve requirements have been detailed with extensive explanations, testing procedures, and guidance.  Most notably, the current version lists nine requirements that are best practices until January 31, 2018, after which time they will become official requirements under the PCI DSS...

Read More

PCI’s Self-Assessment Questionnaire

Compliance with the PCI DSS standard is achieved via different methods.  For eligible merchants and service providers, validating and reporting PCI DSS compliance could be via the PCI DSS Self-Assessment Questionnaire (SAQ).  The SAQ is a tool for eligible entities to evaluate and report PCI DSS compliance through self-assessment.  As the SAQ document is a a significant part of the PCI Council’s tools to help ensure the safety of cardholder data, it is important for all eligible merchants and service providers to complete their SAQ.

PCI’s SAQ Instructions...

Read More