Language Selection

English French German Italian Portuguese Spanish

Web shops face tighter security

Filed under

From 30 June this year all web shops will have to comply with strict security standards drawn up by the world's big credit card companies.

Online shops will be certified annually and checked quarterly to ensure they maintain the security standards.

Websites which flout the rules could be banned from trading or left to soak up the costs of break-ins all by themselves.

The move to tighten up security at online shops happens as increasing numbers of firms report that customer data has been lost or stolen.

In February the Bank of America said it had lost more than 1.2 million customer records - though it said there was no evidence that the data had fallen into the hands of criminals.

More recently LexisNexis, ChoicePoint and HSBC have all revealed that data about customers has been lost to attack by criminal hackers.

It is estimated that this year alone more than 2 million customer records have gone missing or been stolen.

In an attempt to raise the baseline security practices of online merchants and payment processing firms, Mastercard, Visa, American Express, Diners, Discover, and JCB have drawn up standards that dictate what web shops must do to keep safe.

Before these standards were drawn up separate credit card firms and banks had their own different security compliance programs.

All web shops that process more than 20,000 transactions per year will have to comply with the PCI standards no matter where they are in the world. This means that tens of thousands of web shops will have to become compliant with the new rules.

The standards go as far as to dictate what length passwords must be, how often they must be changed and force firms to be very careful with credit card information and who gets access to it.

Full Story.

More in Tux Machines

KDE Applications 15.08.2 Officially Released with Over 30 Fixes

The KDE Community has just announced that KDE Applications 15.08.2 has been released and is now available for download and testing. Read more

Linux Foundation and ONOS Partner on Open Source SDN and NFV Networks

ONOS, a carrier-grade open source software-defined networking (SDN) operating system, received a big endorsement this week from the Linux Foundation. Starting today, the two organizations will partner to develop open source SDN and NFV software. Read more Also: OPNFV Members Discuss Open Source NFV and SDN Plans, Achievements

Wayland & Weston Compositor Ported To DragonFlyBSD

Wayland has been ported to DragonFlyBSD along with its Weston compositor! In the past we've seen some minor experiments by BSD developers with Wayland/Weston, but for the most part all of the BSDs are still focused on X.Org Server support -- need I remind Phoronix readers that DRM/KMS support is in varying stages across the BSD distributions too as one of the support stepping stones. Just a few days ago I ran into the DragonFly Radeon kernel module failing to properly mode-set with a several year old (pre-GCN) graphics card while meanwhile FreeBSD's Radeon KMS port worked. It's still rather a mine field when it comes to open-source graphics acceleration and support on the BSDs while slowly but surely their catching up with the kernel code. Read more

diff -u: What's New in Kernel Development

Over time, memory can become more and more fragmented on a system, making it difficult to find contiguous blocks of RAM to satisfy ongoing allocation requests. At certain times the running system may compact regions of memory together to free up larger blocks, but Vlastimil Babka recently pointed out that this wasn't done regularly enough to avoid latency problems for code that made larger memory requests. Read more