June 11, 2008
PCI mandate stresses importance of web application security
Author: JT Smith
On June 30, another refresh of the Payment Card Industry (PCI) Data Security Standards (PCI DSS) will upgrade Web application security testing from a best practice to a mandatory practice. The deadline forces merchants and vendors to take a closer look at application-layer security and emphasizes its importance in fighting increasing online threats. Finding and mitigating vulnerabilities is the greater goal of PCIÃ¢â¬â¢s Web application security initiative, as it acknowledges what security professionals have known for a long time - security needs to be addressed from the very beginning.