How to Make PCI Compliance a Little Easier for Everyone

Is PCI compliance slowing you down? Read about our compliance services or reach out directly with any questions about your journey to compliance. Before we begin, there’s one thing to make very, very clear: You cannot outsource ALL compliance!   I do not...

PCI DSS 3.2 Multi-Factor Authentication Clash

Recently the PCI Security Standards Council held their North American Community Meeting.  This annual meeting brings together assessors, payment professionals, card brands, Council members, Acquirers, and other interested parties to discuss the state of our beloved...

Preview of the PCI DSS v3.2

The Payment Card Industry (PCI) Security Standards Council (SSC) recently announced the forthcoming release of PCI DSS 3.2.  The release of PCI DSS version 3.2 will supersede the scheduled change for November 2016, and will be the only update to the DSS in 2016.  The...

PCI Compliance for the AWS Cloud

Anitian is proud to announce the publication of our Workbook for PCI Compliance in the AWS Cloud.  This workbook was developed in close collaboration with the AWS team.  It defines not only how to build PCI compliant AWS environments, but also how to use AWS services...

PCI Set to Ban SSL Protocol

Update The PCI SSC published version 3.1 of the PCI DSS on April 15th, 2015, effectively immediately. As Anitian anticipated, the new version of the DSS states that both “SSL and early TLS are not considered strong cryptography and cannot be used as a security...
PCI 3.0 Secure Authentication Requirement

PCI 3.0 Secure Authentication Requirement

The new PCI-DSS 3.0 has introduced a number of new requirements. While some of the changes like penetration testing are getting most of the attention, there are numerous less obvious updates that are equally important. One of the new requirements that is that flying...