The Payment Card Industry Security Standards Council recently released an update to its PCI Data Security Standards, the compliance requirements for companies that store and transmit the payment card information of consumers.
The new update to the PCI DSS Wireless Guidelines Information Supplement provides companies with the information necessary to implement proper data security measures in wireless environments. Included in the guidelines are considerations for Bluetooth technology and best practice methods for testing and detecting unidentified wireless access points, according to the Standards Council.
"Wireless networks continue to be an easy target for data compromise, especially as new devices are added to these environments," Bob Russo, general manager of the PCI Security Standards Council, said. "This resource remains an important tool for understanding how to secure your payment card data when using wireless technologies."
According to the Security Standards Council, businesses can use the information in the guidelines to determine whether or not their data security measures adequately account for the use of wireless technology. The organization also stressed that each environment is different, and companies must evaluate what they must do to meet PCI compliance.
The state of data security is currently quite fluid, given rapidly changing technology and the threats against stored data. As a poll released in July revealed, companies are much more apt to deploy a solution from a vendor that has met PCI compliance. In fact, 69 percent of respondents to a poll answered as such, compared to 63 percent in 2010.
In January, the Security Standards released version 2.0 of the PCI DSS. However, even at the time of their debut the standards were already rendered somewhat dated as the move toward cloud computing was not completely addressed.