Eric Chiu analyzes version 2 of the PCI DSS cloud computing guidelines

Eric Chiu analyzes version 2 of the PCI DSS cloud computing guidelines

Date: Mar 01, 2013

SAN FRANCISCO -- Cloud customers that handle credit card data have long been concerned about their Payment Card Industry Data Security Standard (PCI DSS) responsibilities. Particularly, where is the line drawn between their own compliance requirements and those of the chosen cloud provider?

As a result, the PCI Security Standards Council recently released version 2.0 of its PCI DSS guidelines for cloud computing, which, in part, were intended to address the issue of cloud customer responsibility. But how much clarity does this document provide on a key cloud compliance issue?

In this video, recorded at RSA Conference 2013, Eric Chiu, co-founder and president of Mountain View, Calif.-based cloud compliance vendor HyTrust Inc., analyzes the latest PCI DSS cloud computing guidelines. Chiu discusses his views on how the document addresses cloud customer and provider responsibilities and whether cloud service models have any impact on maintaining PCI DSS compliance. Finally, he talked about how customers should react to providers' claims of PCI DSS compliance.

More on PCI DSS Requirements for Cloud Computing

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: