You are here: silicon.com > Financial Services > News

Credit card companies forge security alliance

In search of a data-security standard...

Tags: credit card, security

By Erica Ogg

Published: 8 September 2006 15:50 GMT

Five major credit card companies have teamed up in the interest of creating better security.

American Express, Discover Financial Services, JCB, MasterCard Worldwide and Visa International announced on Thursday the creation of an organisation to develop and maintain security standards for credit and debit card payments. It's the first time the five brands have agreed on a single, common framework.

The newly formed Payment Card International (PCI) Security Standards Council will manage the PCI Data Security Standard, first established in January 2005 with the intention of making its implementation more efficient for all parties involved in a payment card transaction. That includes merchants, payment processors, point-of-sale vendors, financial institutions and more than a billion card holders worldwide.

The companies have come together despite being in competition with each other because they say ensuring better security will benefit everyone.

Rob Tourt, vice president of network services for Discover, said: "First of all, it's to protect the information of our mutual customers and to make the process of data security compliance easier."

silicon.com Financial Services

Get the latest financial services news straight to your inbox. Sign up for the FS newsletter today!

Having a single data-security standard is a critical issue for the entire industry and will simplify the process, said Brian Buckley, Visa's senior vice president of international risk management.

He said: "Our view is that this is first and foremost an important initiative to get data security in place for payment cards."

Having the common accepted set of rules should foster broader compliance, said Bruce Rutherford, MasterCard's vice president of payments. Those rules include instructions on proper data encryption, common technical standards and security audit procedures.

The first action of the new council was to update the PCI security standard, which was promised in May. The revision gives instructions for how to implement the new standards and clarifies language that was previously considered vague. For example, terms such as "periodically" and "regularly" were swapped for definite deadlines like "annually" or "quarterly" where appropriate. A statement released by the newly formed council said the revisions were the result of feedback from vendors, merchants and payment processors.

Erica Ogg writes for CNET News.com

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

silicon.com Financial Services
Get the latest financial services news straight to your inbox. Sign up for the FS newsletter today!


  • Jobs
Lead IT Auditor - CISA CISSP CISM

Keyword - CISA, CISSP, CISM, Audit, Security, Project, PCI, UNIX, Windows, ITIL. Payment Card Industry Data Security Standard compliance would be ...

FX Emerging Markets Quant Developer (C++) - Vice president

FX Emerging Markets Quant Developer (C++) - Vice president Location: London Salary: VP Level Hire Company: McGregor Boyall Job type: Permanent ...

Senior Commercial Manager - Kano Nigeria

Manage & Supervise preparation of Main/Trade/Sub-contract payments and associated administration;$0 $010. Supervise the preparation and submission of ...

Nick Beecham and Belinda Doshi
No more tax breaks for offshoring?
Financial services firms must prepare now for 2010 legal changes

Tim Ferguson
On a new Voyager, tackling fraud and the intellectual challenge
Interview: Nationwide IT director, Peter Stafford

Nick Heath
David Lister on smart grids and why he left RBS
Interview: National Grid CIO

Andy Jones
Why banks will push ahead with offshoring
Comment: Even if they don't want to

Catherine Stagg-Macey
Legacy IT holding back insurers
Comment: Economic crisis means finance giants must step lively

Julian Goldsmith
The City fund manager with no IT department
Q&A: How asset management is embracing the cloud...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.




Quick Sitemap Links: