Sunset of SSL Extended | blog,pci,cryptography | Control Gap
2 min read

Sunset of SSL Extended | blog,pci,cryptography | Control Gap

If you’ve been struggling with keeping up with various SSL vulnerabilities and planning an orderly cutover to TLS then the recent announcement by...

Read More >
Must (FPE) be distinguishable from cardholder data for PCI?
3 min read

Must (FPE) be distinguishable from cardholder data for PCI?

Previously we looked at Format Preserving Encryption (FPE) its characteristics and suitability for application in solutions intended for PCI DSS. To...

Read More >
PCI DSS Version 3.1 Has Arrived | blog,pci,cryptography | Control Gap
1 min read

PCI DSS Version 3.1 Has Arrived | blog,pci,cryptography | Control Gap

The PCI Security Standards Council today published the expected update to PCI releasing these documents including some specific migration guidance:

Read More >
PCI Security Standards Council set to kill off SSL in PCI DSS/PA-DSS 3.1 updates | blog,pci,cryptography | Control Gap
1 min read

PCI Security Standards Council set to kill off SSL in PCI DSS/PA-DSS 3.1 updates | blog,pci,cryptography | Control Gap

The PCI council has released an announcement that they are preparing an updated version of the PCI DSS (v3.1) and PA-DSS (v3.1), where they will be...

Read More >
What is Format Preserving Encryption and is it suitable for PCI DSS?
4 min read

What is Format Preserving Encryption and is it suitable for PCI DSS?

Format Preserving Encryption or FPE is recent technology that is beginning to show up in payment solutions with the promise of simplifying PCI DSS...

Read More >
Analysis of PCI DSS 3.0 | blog,pci | Control Gap

Analysis of PCI DSS 3.0 | blog,pci | Control Gap

PCI DSS 3.0 was released Nov 2013. There are new and changed requirements with a more organized look. Check out our in-depth analysis and commentary...

Read More >