Security Assessment of Payment Systems under PCI DSS Incompatibilities - ICT Systems Security and Privacy Protection (SEC 2014)
Conference Papers Year : 2014

Security Assessment of Payment Systems under PCI DSS Incompatibilities

Şerif Bahtiyar
  • Function : Author
  • PersonId : 989424
Gürkan Gür
  • Function : Author
  • PersonId : 989425
Levent Altay
  • Function : Author
  • PersonId : 989426

Abstract

With the ubiquitous proliferation of electronic payment systems, data and application security has become more critical for financial operations. The Payment Card Industry Data Security Standard (PCI DSS) has been developed by the payment industry to provide a widely-applicable and definitive security compliance among all components in electronic payment infrastructure. However, the security impact of PCI DSS incompatibilities and relevant security assessment approaches for such cases are yet to be investigated in a comprehensive manner. Therefore, in this paper we present a security assessment framework for payment systems under PCI DSS incompatibilities. Moreover, we analyze a case study to evaluate our proposal and to provide some guidelines to security experts for assessment of PCI DSS compliance.
Fichier principal
Vignette du fichier
978-3-642-55415-5_33_Chapter.pdf (413.07 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01370387 , version 1 (22-09-2016)

Licence

Identifiers

Cite

Şerif Bahtiyar, Gürkan Gür, Levent Altay. Security Assessment of Payment Systems under PCI DSS Incompatibilities. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. pp.395-402, ⟨10.1007/978-3-642-55415-5_33⟩. ⟨hal-01370387⟩
232 View
343 Download

Altmetric

Share

More