mrs_sweetpeach: (Default)
mrs_sweetpeach ([personal profile] mrs_sweetpeach) wrote2009-02-27 01:10 pm
Entry tags:

PCI DSS is pissing me off

Have any of you had to deal with PCI DSS (Payment Card Industry Data Security Standards)? The company work uses to process credit card payments claims that the various credit card associations have made new rules and that as a result we'll have to jump through a bunch of hoops to be able to keep accepting credit cards. I just completed a survey that was obviously written by a committee of computer programmers.

[identity profile] siberian-skys.livejournal.com 2009-02-28 12:01 am (UTC)(link)
I don't suppose you want to try that for me again in English? *Iz very confused, not to mention knackered.*
ext_3357: (Default)

[identity profile] mrs-sweetpeach.livejournal.com 2009-02-28 03:41 am (UTC)(link)
I'd like to, but I don't think it can be done. Imagine 127 questions like this one: "Are logs for external-facing technologies written onto a log server on the internal LAN?"

[identity profile] greenlady2.livejournal.com 2009-02-28 08:15 am (UTC)(link)
"Are logs for external-facing technologies written onto a log server on the internal LAN?"

But of course. If the technologies are external-facing, they must be written internally. Right?

And you do know that the camel is an animal designed by a committee.

[identity profile] siberian-skys.livejournal.com 2009-02-28 10:57 am (UTC)(link)
And that is why I sucked at computer programming.

[identity profile] minotaurs.livejournal.com 2009-02-28 12:31 am (UTC)(link)
I know that we're having to get new machines for our stores to comply with the new rules - something about the number of data tracks actually being used - but other than that, not really.
ext_3357: (Default)

[identity profile] mrs-sweetpeach.livejournal.com 2009-02-28 04:00 am (UTC)(link)
You're lucky. The requirements for companies that don't use card readers are a nightmare. (We can't use machines because we provide a business-to-business service to clients all over the world and do not have physical access to them or their credit cards.)

[identity profile] jebra.livejournal.com 2009-02-28 03:42 am (UTC)(link)
No way.

It was written by computer science drop-outs.
ext_3357: (Default)

[identity profile] mrs-sweetpeach.livejournal.com 2009-02-28 04:02 am (UTC)(link)
*sigh* Worse. I think it was written by a committee of computer science drop-outs.

[identity profile] bwittig.livejournal.com 2009-03-01 03:46 pm (UTC)(link)
I submit:
"Written by the managers of the teams which comprised the committee of computer science drop-outs."
ext_3357: (Default)

[identity profile] mrs-sweetpeach.livejournal.com 2009-03-02 03:24 am (UTC)(link)
Score!