Metrika članka

  • citati u SCindeksu: [2]
  • citati u CrossRef-u:0
  • citati u Google Scholaru:[=>]
  • posete u poslednjih 30 dana:1
  • preuzimanja u poslednjih 30 dana:0
članak: 9 od 21  
Back povratak na rezultate
Info M
2009, vol. 8, br. 31, str. 19-24
jezik rada: srpski
vrsta rada: članak
objavljeno: 24/02/2010
Proces primene PCI standarda
Univerzitet u Beogradu, Fakultet organizacionih nauka

e-adresa: dsimic@fon.bg.ac.rs

Sažetak

Rad opisuje PCI standarde: PCI PED, PCI PA-DSS i PCI DSS. Osnovna namena ovih standarda je da zaštiti korisnike kartica od neautorizovanog pristupa podacima. Kako se zloupotrebe u sistemima platnih kartica povećavaju, tako i primena PCI standarda postaje obavezna za trgovce, banke i provajdere servisa. Primena PCI standarda doprinosi ostvarenju visokog nivoa zaštite podataka korisnika kartica. Način za implementaciju PCI DSS standarda nije jedinstven. U ovom radu je prikazan pristup zasnovan na prioritetima koji za neke organizacije može imati prednosti u odnosu na druge pristupe.

Ključne reči

PCI PED; PCI PA-DSS; PCI DSS; pristup zasnovan na prioritetima; zaštita podataka

Reference

*** (2009) PCI Security Standard Council, 'Self-Assessment Questionaires',. https://www. pcisecuritystandards. org/saq/instructions_dss. shtml, septembar
*** (2009) VISA List of PCI DSS Compliant Service Providers. usa.visa.com/download/merchants/cisp-list-of-pcidss-compliant-service-providers.pdf, septembar
APACS Fraud: The facts 2009. http://www.apacs.org.uk/resources_ publications/documents/FraudtheFacts2009.pdf
APCA (2008) Payment fraud in Australia. http://www.apca.com.au/Public/apca01_live.nsf/ResourceLookup/Press_Release_ Payments_Fraud_Statistics_5.pdf/$File/Press_Release_ Payments_Fraud_Statistics_5.pdf, December
ATM marketplace (2008) European ATM skimming jumps 43%. http:// www.atmmarketplace.com/article.php?id=9916&na=1, 08 maj 2008
Bradley, T., Burton, J.D. Jr., Chuvakin, A., Elberg, A., Freedman, B., King, D., Paladino, S., Schooping, P. (2007) PCI compliance: Implementing effective PCI data security standards. Syngress Publishing, Inc
Cobb, M. PCI compliance and web applications: Code review or firewalls. http://searchsecurity.techtarget.com/tip/0,289483,sid14_gci1311874,00.html, 08.maj 2008
Jaikumar, V. (2007) FAQ: What Visa's payment application security mandates mean. Computer World
Lemos, R. (2007) Court filings double estimate of TJX breach. Security Focus, http://www.securityfocus.com/news/11493, October
Matyaš, V., Krhovjak, J., Kumpost, M., Cvrcek, D. (2008) Authorizing card payments with PINs. IEEE Computer, vol. 41, br. 2, pg. 64-68, February
Simić, D. (2005) Reducing fraud in electronic payment systems. u: 7th Balkan Conference on Operational Research, Constanta, Romania, May
Simić, D. (2008) PCI DSS - standard za zaštitu sistema za rad sa platnim karticama. u: XXIII Naučno-stručni skup, InfoTech, Vrnjačka Banja, 02. - 05. juna 2008, Predavanje po pozivu
Stallings, W., Brown, L. (2008) Computer security: Principles and practice. Pearson Education, Inc
Stanković, S., Simić, D. (2009) Defense strategies against modern botnets. International Journal of Computer Science and Information Security, IJCSIS, vol. 2, br. 1, June
van der Linden, M.A. (2007) Testing code security. Boca Raton: Auerbach Publications