Skip to the main content.
Contact
Contact

Blog

Be in touch with our latest news

pci (5)

5 min read

17 Predictions About the Next Version of PCI DSS

PCI DSS v3.2 is due for an update this year - but what will that look like? In this article, we peer into our crystal ball to make some predictions...

Read More >

5 min read

Understanding "Connected-to" - Is The Internet In Scope For PCI DSS?

PCI DSS is all about scope. Getting scope right or wrong is perhaps the single most critical factor determining the ultimate success or failure of...

Read More >

2 min read

8-digit BIN Issues and Risks Remain after PCI Truncation Rules Clarified

Last month we wrote this article about issues arising from the addition of new BIN ranges and the lack of clear guidance specifically with 16-digit...

Read More >

1 min read

In The Payments World, Even Canadians Have ZIP Codes!

Many Canadians traveling to the US have experienced the frustration of running into a form of address verification. This is a common extra check...

Read More >

7 min read

NIST Moves on Sweet32 - 3DES, Blowfish, and Others - Mostly Unsafe

Now is the time to stop using 64-bit block length ciphers such as 3DES (TDEA) and Blowfish in general purpose applications of cryptography. In 2016,...

Read More >

10 min read

Understanding P2PE, NESA, E2EE, and PCI Compliance

Compliance simplification, what most people call “scope reduction”, can have huge benefits in terms of saving time, effort, headaches, and money....

Read More >

4 min read

PCI Compliance and the Intel AMT Vulnerability

On May 1st a critical new and possibly unprecedented vulnerability was announced.  The flaw in Intel's Active Management Technology (AMT) firmware...

Read More >

2 min read

7 Things You Can Do To Deal With The Recent Format Preserving Encryption (FPE) Compromise

Barely a year after NIST approved Format-Preserving Encryption (FPE) based on AES they've issued a news release that one of the approved modes has...

Read More >

3 min read

3 Ways 8-Digit BIN Ranges May Impact PCI Compliance

New 8-digit Bank Identification Numbers (BIN) could complicate PCI truncation rules and create compliance headaches for those required to maintain...

Read More >