PCI News


usd Introduces Unlimited Free ASV Re-Scans

From now on you will receive an unlimited number of free re-scans if your External PCI DSS Security Scan (ASV Scan) identifies relevant vulnerabilities. This allows you to perform as many re-scans as you like and verify whether your measures are successful.

usd has been authorized by the PCI Security Standards Council (PCI SSC) to conduct security assessments according to the PCI DSS since 2005. As an Approved Scanning Vendor (ASV), we perform ASV Scans for our clients worldwide.

If you have any questions or need assistance, simply contact us. Our experts are happy to help.
Phone: +49 6102 8631-190
Email: sales@usd.de

Weiterlesen »


PCI DSS Minor Revision 3.2.1

On 17 May 2018, the Security Standards Council (PCI SSC) published a minor revision to the PCI DSS. Revision 3.2.1 will become binding as of 1 January 2019 – version 3.2. remains valid through 31 December 2018.
The minor revision does not introduce any new requirements but eliminates confusion around effective dates and migration deadlines for SSL/early TLS.

Weiterlesen »


Firewall Reviews

A correct configuration of the firewall is essential to successfully prevent possible attacks from the internet. The firewall rulesets should therefore be regularly checked for unnecessary, outdated or incorrect rules. Check your firewalls for vulnerabilities and satisfy requirement 1.1.7 of the PCI DSS with our Firewall Reviews.

Weiterlesen »


PCI DSS Gap-Analysis

We would like to offer you our PCI DSS Gap-Analysis as an ideal preparation for your PCI DSS certification. We verify your compliance with relevant PCI DSS requirements. This enables you to de­tect deviations from the PCI DSS standard at an early stage and correct them befo­re the official PCI DSS certification takes place.

Weiterlesen »


SSL / TLS 1.0 Deadline for PCI DSS

The Secure Socket Layer (SSL) protocol developed by Netscape and the Transport Layer Security (TLS) protocol standardised by the Internet Engineering Taskforce (IETF) are encryption protocols that provide authentication and data encryption. Developed in the early 1990s, SSL is the predecessor of TLS and has undergone several revisions over the past few years to address security vulnerabilities and support stronger, more secure cipher suites and algorithms. Among the most important ones are SSL 3.0 (1996), TLS 1.0 (1999), TLS 1.1 (2006) and TLS 1.2 (2008).

Weiterlesen »

IATA Makes PCI DSS Binding for Travel Agencies

More security for the travel industry. IATA now requiring PCI DSS compliance, deadline 01 March 2018.

A vast majority of trips are booked using credit cards. This makes you – as a travel agency – a popular target for hackers and card fraudsters. With the international security standard of the credit card industry PCI DSS, you can effectively protect yourself against such threats.

Weiterlesen »