David Gamey

If You Take Credit Cards By Phone or Mail - You Need to Read About Visa's October Mandate | blog | Control Gap
2 min read

If You Take Credit Cards By Phone or Mail - You Need to Read About Visa's October Mandate | blog | Control Gap

PCI Rules Aren't the Only Ones You Need to Comply With Most organizations concerned with payment compliance are focused on the PCI Data Security...

Read More >
Equifax Move Over, Here Comes The Cambridge Analytica and Facebook Scandal! | blog | Control Gap
4 min read

Equifax Move Over, Here Comes The Cambridge Analytica and Facebook Scandal! | blog | Control Gap

We've been following security and breaches for a long time and they have been getting unquestionably worse. While mega-credit card breaches seem to...

Read More >
PCI DSS May Require Pulling Up Your SOX (or ISO) | blog,pci | Control Gap
3 min read

PCI DSS May Require Pulling Up Your SOX (or ISO) | blog,pci | Control Gap

Executives and managers in organizations preparing for their first onsite PCI security assessment may feel confident that having passed a SOX audit...

Read More >
Understanding
5 min read

Understanding "Connected-to" - Is The Internet In Scope For PCI DSS?

PCI DSS is all about scope. Getting scope right or wrong is perhaps the single most critical factor determining the ultimate success or failure of an...

Read More >
8-digit BIN Issues and Risks Remain after PCI Truncation Rules Clarified
2 min read

8-digit BIN Issues and Risks Remain after PCI Truncation Rules Clarified

Last month we wrote this article about issues arising from the addition of new BIN ranges and the lack of clear guidance specifically with 16-digit PAN...

Read More >
In The Payments World, Even Canadians Have ZIP Codes!
1 min read

In The Payments World, Even Canadians Have ZIP Codes!

Many Canadians traveling to the US have experienced the frustration of running into a form of address verification. This is a common extra check...

Read More >
How To Avoid Scams When Donating To Natural Disaster Charity Groups
1 min read

How To Avoid Scams When Donating To Natural Disaster Charity Groups

It's hard to imagine a natural disaster until it starts happening in your own backyard. Unfortunately, the people of Texas have experienced and...

Read More >
A Misadventure on THE AIRLINE THAT SHALL NOT BE NAMED | blog,humour | Control Gap
5 min read

A Misadventure on THE AIRLINE THAT SHALL NOT BE NAMED | blog,humour | Control Gap

Whether you embrace or eschew the label of Road Warrior, if you've traveled extensively for business then you have experienced the trials and...

Read More >
NIST Moves on Sweet32 - 3DES, Blowfish, and Others - Mostly Unsafe | blog,pci,cryptography | Control Gap
7 min read

NIST Moves on Sweet32 - 3DES, Blowfish, and Others - Mostly Unsafe | blog,pci,cryptography | Control Gap

Now is the time to stop using 64-bit block length ciphers such as 3DES (TDEA) and Blowfish in general purpose applications of cryptography. In 2016,...

Read More >