Community

Join the Community

23,409
Expert opinions
42,310
Total members
272
New members (last 30 days)
166
New opinions (last 30 days)
29,114
Total comments
Join Sign in

PCI is not onerous - it's too weak

  0 Be the first to comment
Keith Appleyard
Keith Appleyard
IT Consultant
available for hire
Location
Bromley
Followers
2
Opinions
60
Unfollow

Despite all the bleating about PCI over the years, I found it to be too weak.

With all the focus on Cardholder Data - as being that on the Mag Stripe - namely Cardnumber, Cardholder Name, Expiry Date and Security Code - I found many Merchants & Service Providers treated it as a 'max' rather than 'min' level of security.

I performed due diligences on places where lots of other personal data such as Mothers Maiden Name, Cardholder Address, Phone Number, e-mail address, Date of Birth, Passport Number, Gender, Religion, etc etc was never encrypted, simply because PCI itself didn't tell them to do so.

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

5860
 

Share

 
 
 
 
 

Channels

/payments
 

Whatever...

A place to share stuff that isn't at all fintec related but is amusing, absurd or scary.

Join group

480 opinions 21 members

Comments: (0)

Keith Appleyard
Keith Appleyard
IT Consultant
available for hire
Member since
17 Aug 2007
Location
Bromley
Followers
2
Following
0
Opinions
60
Unfollow

Barclays On-line Banking deserves better error messages

RBS does have robust procedures

National Savings and Investments are rather too lethargic

RBS Internet Banking is not for the English

RBS don't seem to understand basic book-keeping rules

See all Opinions from Keith

More expert opinions

Joris Lochy

Joris Lochy Product Manager at Intix | Co-founder at Capilever

The AI Agent Economy: Redesigning Financial Interactions

Andrew Bonsall

Andrew Bonsall COO at AperiData

Beyond lending: Open Banking lessons from the Public Sector

Gurprit Singh Gujral

Gurprit Singh Gujral Founder and CEO at LoanTube

Why It’s Time to Rethink Personal Guarantees in SME Lending

Erica Andersen

Erica Andersen Marketing at smartR AI

The Walls Within: Why Organizations Cling to Data Silos in the Age of AI

See all opinions

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

Join the Community

23,409
Expert opinions
42,310
Total members
272
New members (last 30 days)
166
New opinions (last 30 days)
29,114
Total comments
Join Sign in

Trending

Nkahiseng Ralepeli

Nkahiseng Ralepeli VP of Product: Digital Assets at Absa Bank, CIB.

Tokenised Stocks: What They Are, What They Aren't, and Why They Matter

Roy Prayikulam

Roy Prayikulam SVP Risk & Fraud Division at INFORM GmbH

Anti-money laundering in transition: what's coming with AMLA – and how AI can help

Scott Dawson

Scott Dawson CEO at DECTA

Innovation Doesn’t Necessarily Mean Progress

Frank Moreno

Frank Moreno CMO at Entersekt

Trusted devices and silent signals could help FIs improve fraud protection

Now Hiring

All companies

Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.

Please read our Privacy Policy.

Accept