Implementation of the Payment Card Industry Data Security Standard in a Card Processor
DOI:
https://doi.org/10.70833/rseisa17item324Keywords:
Payment Card Industry, Data Security Standard, PCI Security Standards Council, Cardholder, Payment cardsAbstract
As a result of the rise in payment card fraud and identity theft, the five major payment card brands have come together to form the PCI Security Standards Council (PCI SSC). This Council developed the requirements of the Data Security Standard in the Payment Industry, in order to promote and improve the security of cardholder data and facilitate the adoption of security measures; This standard applies to all entities that store, process or transmit confidential and/or cardholder authentication data. The research approach is qualitative. The level of research proposed is exploratory and descriptive, in terms of design it will be non-experimental and cross-sectional. The analysis unit included twelve (12) employees of the Card Processor. In this work, the PCI DSS standard is implemented in a card processor, in order to strengthen the security schemes and protection of the cardholder's information. As a result of this implementation, the level of security is raised, the risk of information loss is reduced and compliance with the operability with the different means of payment brands is guaranteed.
Downloads
References
American Express. (2000). American Express. Obtenido de https://merchant-channel.americanexpress.com/merchant/en_US/data-security
Council, P. S. (2016). El Enfoque Prioritario para Lograr el Cumplimiento de la PCI DSS.
Discover Global Network. (2000). Obtenido de https://www.discoverglobalnetwork.com/solutions/pci-compliance/discover-information-security-compliance/#:~:text=The%20Discover%20Information%20Security%20%26%20Compliance,the%20Discover%C2%AE%20Global%20Network.
Hernández, R., Fernández , C., & Baptista, L. (2010). Metodología de la Investigación. México: Mc GrawHill Educación.
JCB Co. (2000). Global JCB. Obtenido de https://www.global.jcb/en/products/security/data-security-program/index.html
Mastercard. (2001). Mastercard. Obtenido de https://www.mastercard.com/global/en/business/overview/safety-and-security/security-recommendations/site-data-protection-PCI.html
Morsea, E. A., & Ravalb, V. (2008). PCI DSS: Payment card industry data security standards in context. Elsevier, 550.
PCI Security Standards Council LLC. (2018). PCI DSS Requisitos y procedimientos de evaluación de seguridad. PCI Security Standards Council LLC.
PCI Security Standards Council. (2006). PCI Security Standards Council. Obtenido de https://www.pcisecuritystandards.org/document_library
PCI Security Standards Council. (2006). PCI Security Standards Council. Obtenido de https://www.pcisecuritystandards.org/about_us/
PCI Security Standards Council LLC. (2006). PCI Security Standards Council. Obtenido de https://es.pcisecuritystandards.org/minisite/env2/
PCI SSC. (2006). PCI Security Standards Council. Obtenido de https://www.pcisecuritystandards.org/about_us/
Visa Inc. (2000). Visa Inc. Obtenido de https://www.visa.gp/run-your-business/small-business-tools/information-security/ais-program.html
Visa USA. (2001). Visa Usa. Obtenido de https://usa.visa.com/support/small-business/security-compliance.html
Downloads
Published
How to Cite
License
Copyright (c) 2023 Fanny Carolina Mujica Fernández, Mario Roberto Monges Olmedo†
This work is licensed under a Creative Commons Attribution 4.0 International License.
Creative Commons Attribution License CC-BY
You are free to:
Share — copy and redistribute the material in any medium or format.
Adapt — remix, transform, and build upon the material for any purpose, including commercially.
Under the following terms:
Attribution — You must give appropriate credit, provide a link to the license, and indicate if any changes have been made. You may do so in any reasonable way, but not in any way that suggests that you or your use is endorsed by the Licensor.
