{"id":3575,"date":"2019-11-25T22:46:00","date_gmt":"2019-11-25T21:46:00","guid":{"rendered":"https:\/\/webdev.atsec.us\/?p=3575"},"modified":"2024-07-25T22:58:01","modified_gmt":"2024-07-25T20:58:01","slug":"a-pci-walk-in-the-clouds","status":"publish","type":"post","link":"https:\/\/webdev.atsec.us\/a-pci-walk-in-the-clouds\/","title":{"rendered":"A PCI WALK IN THE CLOUDS"},"content":{"rendered":"\n

November 21, 2019, Melbourne, Australia<\/p>\n\n\n\n

atsec China participated in the PCI Security Standards Council\u2019s 2019 Asia-Pacific Community Meeting held in Melbourne, Australia from the 20th to 21st of November, and also hosted a booth.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

atsec\u2019s principal consultants provided a presentation on \u201ca PCI Walk in the Clouds.\u201d atsec shared their experience in Payment Card Industry Data Security Standard (PCI DSS) assessment, especially the challenges and proposed solutions for assessments in a cloud environment. atsec also invited Tencent Cloud, as a cloud service provider, to share their compliance experience and data security model.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

The presentation focused on two common cloud service models: cloud payment products (software as a service based) and cloud-based payment services (infrastructure as a service based). Challenges and opportunities for both models were discussed. In addition, atsec shared the \u201cWhite Paper for Cloud Customer Data Security Standards Based on PCI DSS.\u201d which was released by Tencent Cloud and atsec in July 2019, and related to shared responsibility between cloud service providers and cloud customers. The paper is a valuable resource for cloud customers selecting appropriate technical solutions to meet PCI DSS requirements.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

In addition, a bamboo book (a condense version), titled \u201cPCI Valuable Book\u201d was demonstrated. It includes a checklist for critical security requirements in order to maintain compliance. atsec encouraged our customers to integrate their PCI DSS requirements into daily job activities. The information expressed in old books, such as the Art of Warfare written by Sun Wu in old China, could be simplified and summarized; however the impact of that short work can be huge. On the other hand, modern standards are complete and accurate in order to address all different types of situations applicable for the standard. No matter if it\u2019s an old book or a modern standard like PCI DSS, a high quality implementation and validation assessment are always important.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Compliance and assessment processes could be viewed as \u201cromantic dramas.\u201d Although there could be challenges for entities doing remediation based on the security standards, finally the benefits of being compliant can be realized. Just as in \u201cA Walk in the Clouds\u201d, the characters in the movie are looking for true love; atsec hopes that the industry works together to get ready for changes that come with new technologies such as Cloud computing, IoT security, mobile payment, AI, etc., and seeks the true meaning of compliance and to improve overall information security.

The presentation can be downloaded at the following link:
http:\/\/www.atsec.cn\/downloads\/pdf\/A_PCI_Walk_In_The_Clouds.pdf<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

November 21, 2019, Melbourne, Australia atsec China participated in the PCI Security Standards Council\u2019s 2019 Asia-Pacific Community Meeting held in Melbourne, Australia from the 20th to 21st of November, and also hosted a booth. atsec\u2019s principal consultants provided a presentation on \u201ca PCI Walk in the Clouds.\u201d atsec shared their experience in Payment Card Industry […]<\/p>\n","protected":false},"author":3,"featured_media":3576,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[7,16,13],"tags":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/posts\/3575"}],"collection":[{"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/comments?post=3575"}],"version-history":[{"count":1,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/posts\/3575\/revisions"}],"predecessor-version":[{"id":3580,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/posts\/3575\/revisions\/3580"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/media\/3576"}],"wp:attachment":[{"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/media?parent=3575"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/categories?post=3575"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webdev.atsec.us\/wp-json\/wp\/v2\/tags?post=3575"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}