Requirement 3: Protect stored cardholder data Requirement 4: Encrypt transmission of cardholder data across open, public networks
Category: Security
PCI DSS: Build and Maintain a Secure Network
Requirement 1: Install and maintain a firewall configuration to protect cardholder data Requirement 2: Do not use vendor-supplied defaults for system passwords and other security parameters
PCI DSS: Overview
PCI DSS stands for Paymenet Card Industry Data Security Standard. It provides a baseline of technical and operation requirements designed to protect cardholder data. And it applies to every entities involved in payment card process – including merchants, processors, accquires, issuers, and service providers, as well as all other entities that store, process or transmit … Continue reading PCI DSS: Overview
LastPass Security Incident
I received a mail from the LastPass team Today reporting that parts of its users’ data may have been stolen recently It really scares me! As many people I know use LastPass to manage their personal password, like Email account, netbank account. There is definitely NO 100% safe place in the cyber world. Just a … Continue reading LastPass Security Incident
FTP Active Mode vs. Passive Mode
Continue with my previous post. Now my friend should understand why the solution I gave to him fixed the FTP issue. I illustrated how FTP protocal works in both active and passive mode as below. The biggest difference is which side initiates the data transfer session: In active mode, FTP server initiates the data transfer … Continue reading FTP Active Mode vs. Passive Mode
Jackie Chen's IT Workshop 