This is a computer translation of the original webpage. It is provided for general information only and should not be regarded as complete nor accurate. Close Disclaimer
Search
Products
Central office of Attendance
To visualize Impression Email
I will choose the language: English French Spanish Official language Brazil

PCI – Payment Card Industry Security Standards

The Cards of Cré said they are one of the most important inventions of sé culo XX. Conceived initially as a way to pay accounts in restaurants for Frank McNamara, with the creation of the Diners Club in 1949, the most important of payments of the world, substituting ballots, checks and travellers had become half checks.

According to Nilson Report www.nilsonreport.com in 31 of December of 2008, in U.S.A., the debt balance for great bank ofs issue and market share for flag was:

Bank of issue

Billions of Dollars

Chase

183,320

Bank of America

166,320

Citibank

106,740

American Express

88,020

One capital

60,080

Discover

49,690

Wells Fargo

36,360

HSBC

29,360

US Bank

18,530

USAA

16,610

Market Share
for Flag

 Percentage

It aims at

60,00%

Mastercard

28,00%

American Express

10,50%

JCB

0,90%

Diners Club

0,50%

Evidently that such volume of money would not leave to call attention criminals, and the groups of people who commits barratry are an important one to player of this industry.

With the increase in the frauds in Cards of Cré said the main flags, It aims at, Mastercard, JCB and Amex if they had joined in the PCI Security Standars Council ( www.pcisecuritystandards.org ) that é a ONG that it aims at to increase the security of all the chain of the Cards of Cré said.

The industry of Cards of Cré said é sufficiently complex with several players, the main ones cited below:

  • CARD HOLDER – the Carrier of the Card, the customer in fact and the only one that it loads the plastic.
  • ISSUER – Bank of issue of the Card, any bank or company that emit a proper card or of one determined flag.
  • MERCHANT – Any trader who has accepted the Card of Cré said
  • BRAND – Flag (He aims at, Mastercard, Amex, etc.)
  • Rendering ACQUIRER – of Services for the Merchants (Visanet, Redecard, etc.)
  • PROCESSOR – Processing, dates centers, companies who manufacture the cards, embossam, send for the carriers, make Electronic Transference of Deep, process the Clearing Houses, etc. – (Orbitall, CSU, EDS, GetNet, Intelcav)
  • FRAUDSTER – Group or individuals that embezzle the cards of cré said

Standards of security had been defined for each typo of player, but they mainly aim at to prevent that defrauding they have access to the information of the cards and its carriers.

End of
Translation Click to Translate text after this point

A transmissão de dados de cartões e dos seus portadores deve ser efetuada em ambiente seguro, criptografado, de preferencia através de VPNs (Virtual Private Network), os cartões devem ser considerados “dinheiro” e todas as transações envaidas por links tipo TEF – Transferencia Eletronica de Fundos.

Os bancos de dados dos usuérios de cartões devem ser protegidos de acessos não autorizados, arquivados de forma criptografada, em uma rede que conte com toda a proteção disponivel: Firewall, VPN (Rede Virtual Privada), IPS (intrusion Prevention System – Sistema de Prevenção de Intrusão), monitoradas permanentemente com foco em segurança da informação.

Maiores informações estão disponiveis no Item RECURSOS desta sessão.

Uma série de produtos de Segurança da Informação e Risco Operacional que a CLM distribui foram devidamente customizados pelos fabricantes para atender especificamente as exigencias do PCI Security Standars Council.

Alem de ficar conforme as regras do PCI e mesmo de outras, como Sarbanes Oxley e Basileia II, a empresa passaré a contar a melhor tecnologia disponivel no mundo para Segurança e Compliance.