The Payment Card Industry Data Security Standard (PCI DSS) is designed to prescribe certain controls deemed effective at preventing or detecting breaches. The standard is designed to help auditors ensure the prescribed controls have been implemented effectively. But here's the thing: PCI DSS does not tell you how or why.
展开▼
