April 21, 2005

Visa, MasterCard, and American Express are going after e-commerce sites to make sure that customer data is secure. After June 30th, companies selling online will have to apply for certification under new security guidelines. Online stores processing more than 20,000 transactions per year will be forced to get their networks scanned each quarter and submit proof of annual compliance audits in order to be able to accept credit card payments from the three providers. This means that companies with as few as 55 transactions per day will be forced to spend many thousands of dollars per year to remain compliant. This is bad news for small online stores with low margins, and very good news for companies providing vulnerability scanning services.

Here are the Links

The Silicon.com Article

The CNET Article