Mobility a top priority for PCI
To get to that next level of modern security, the new chair of the Payment Card Industry Security Standards Council said mobile security will be the key to PCI compliance, according to BankInfoSecurity. As more mobile technology emerges, the online payment industry will have to push forward with mobile security technology to help guard against identity theft and fraud.
"We have special interest groups that will be looking at how to take a risk-based approach to the next level," Mike Mitchell told the news source, adding that point-to-point encryption, tokenization and more are big-time priorities for PCI this year.
In an effort to get better mobile payment security, Mitchell told BankInfoSecurity that financial institutes will have to comply with the PCI Data Security Standard. PCI SCC general manager Bob Russo said the adoption of mobile devices has brought forth a task force to help issue some guidance, and he hopes to issue some best practices for mobile security this year, the news source said.
Delaware state chief security officer told BankInfoSecurity that other than PCI compliance, a strong password, inactivity time out and a remote wipe if a device is compromised are all important parts of mobile security for people and companies.