Authorship has changed from editon to edition.

Includes bibliographical references and index.

About PCI and this book -- Introduction to fraud, data theft, and related regulatory mandates -- Why is PCI here? -- Determining and reducing the PCI scope -- Building and maintaining a secure network -- Strong access controls -- Protecting cardholder data -- Using wireless networking -- Vulnerability management -- Logging events and monitoring the cardholder data environment -- PCI for the small business -- Managing a PCI DSS project to achieve compliance -- Don't fear the assessor -- The art of compensating control -- You're compliant, now what? -- Emerging technology and alternative payment schemes -- Myths and misconceptions of PCI DSS.

"There are a variety of regulatory mandates and industry guidelines that impact information security, but none have the virtually universal scope of PCI DSS (Payment Card Industry Data Security Standard). Every business around the world that accepts, processes, transmits, or stores credit card data is subject to compliance with PCI DSS"--