Title

PCI compliance: Overcoming the challenges

Document Type

Journal Article

Publisher

IGI Global

Faculty

Computing, Health and Science

School

Computer and Security Science, Centre for Security Research

RAS ID

8594

Comments

Originally published as: Ngugi, B., Vega, G., & Dardick, G. (2009). PCI compliance: overcoming the challenges. International Journal of Information Security and Privacy (IJISP), 3(2), 54-67. Original article available here

Abstract

This study reviews the progress made by the introduction of the Payment Card Industry (PCI) compliance rules in the USA. Available data indicate that compliance has grown but several issues remain unresolved. These are identified within, along with an analysis of the feasibility of several solutions to the challenges that have hampered compliance with the Payment Card Industry rules. These solutions are evaluated by the extent to which they can help the merchants meet their business objectives while still safeguarding the credit card data. The first solution involves upgrading the current PCI standards as suggested by the PCI council. The second solution would require moving the burden of credit card information storage to the credit card companies and member banks, as suggested by the National Retail Federation. A third option reflects a socially responsible approach that protects the interests of all stakeholders. The study concludes by suggesting the way forward.

DOI

10.4018/jisp.2009040104

 
COinS
 

Link to publisher version (DOI)

10.4018/jisp.2009040104