wisemonkeys logo
FeedNotificationProfileManage Forms
FeedNotificationSearchSign in
wisemonkeys logo

Blogs

Payment Card Industry - Data Security Standard PCI-DSS compliance for online banking applications

profile
67_Ashish Pandey
Oct 20, 2021
0 Likes
0 Discussions
59 Reads

Payment Card Industry - Data Security Standard (PCI-DSS) compliance for online banking applications

Payment Card Industry - Data Security Standard is an abbreviations(PCI-DSS) . Before 2004, major credit card brands such as American Express, MasterCard, Visa, Discover and JSB used to implement their own version of security programme. They collaborated together to create a universally accepted programme to encourage and improve cardholder data security.but due to this lot of data breach had happened cybercriminal activities has taken place .As a universal Standard, any merchant or service provider that stores,processes or transmits cardholder data is required to comply with this standard. Organizations that misses the mark to fulfill are ignored by the clients (after all, it’s all about their date), and those that undergo security breach and are found out to be out of compliant are possibly fined.But in 2006 the five card companies told to make some security standard council(SSC).PCI Security Standards Council (PCI SSC) It is a standarad not a law which set by security standard council in which the set rules or guidelines regarding Payment cards through banking and banking applications in between merchants and clients .where customers can easily make transaction online .In online banking appliactions adequate security testing to ensure card holder data is never compromised.Run controlled data breach attempts against the bank network on regular basis to ensure network, end-point and web application security.Perform security testing to detect well known vulnerabilities like SQL injection, OS command injection, Cross-site scripting, broken authentication etc.Test for the presence of authorized and un-authorized wireless access points on a quarterly basis.Perform penetration testing – white box and black box – on network layer and application layer at least once a year or after a signification change has been made to the application.Scope of penetration testing is the card holder environment (CDE) + systems and networks connected to it (unless the bank has a segmented network in which the CDE is isolated from other systems).Penetration testing should aim to identify all possible threats and vulnerabilities and try to exploit them to penetrate the system both at the application and network level.Issues identified should be corrected and re-tested until all chances of malicious activity are removed

 


Comments ()


Sign in

Read Next

File Allocation Methods

Blog banner

Understanding Gen Z: A Generation Facing Crisis and Potential

Blog banner

Top 5 Tech Innovations of 2018

Blog banner

Booting Process In Operating System

Blog banner

Threads

Blog banner

Hot Mango Pickle (Methiyu)

Blog banner

BUFFER OVERFLOW_142

Blog banner

Why Inconel 625 and Monel 400 Remain Unbeatable in Refinery Applications?

Blog banner

How to use open SSL for web server - browser communication

Blog banner

Big Data

Blog banner

FILE SHARING

Blog banner

Pro-Tips On How To Keep your Foot Healthy

Blog banner

The Impact of Tolerances and Wall Thickness on Pipeline Integrity

Blog banner

1 Dentist in Maroubra, Sydney and her 10 obsessions

Blog banner

Why Summer Break Is Important for Emotional and Cognitive Growth?

Blog banner

Why Extreme Opinions Are Rising: Psychological Insights into Society’s Divides

Blog banner

LINUX VSERVER VIRTUAL MACHINE ARCHITECTURE

Blog banner

Outlook mail

Blog banner

Satellite Based Positioning

Blog banner

MODERN OPERATING SYSTEM

Blog banner

How Men and Women Process Pain Differently

Blog banner

Topic: Sessions in Operating system

Blog banner

Smart Eating Habits for Office Professionals to Stay Healthy

Blog banner

Security in Operating Systems

Blog banner

Ola

Blog banner

Big O Notation

Blog banner

THREADS (assignment 1)

Blog banner

How can denial-of-service(Dos) attacks be prevented?

Blog banner

Having passion in life

Blog banner

Should you be using a mouthwash? Know from the experts

Blog banner

Memory Management of Operating System(OS)

Blog banner

Explaining Buffer Overflow with Example

Blog banner

Modern Operating System - Khush Bagaria

Blog banner

OS Evolution Achievements

Blog banner

Paging

Blog banner

Kernel Modes: User Mode vs. Kernel Mode - 80

Blog banner

CyberSecurity Color Wheel

Blog banner

Electronic Funds Transfer

Blog banner

Process in OS

Blog banner

Principles of Concurrency

Blog banner

computer security

Blog banner

Cache memory

Blog banner