Merchants handling credit cards would be subject to new security rules as early as October, though it appears new implementations of WEP will be permitted until mid next year, and existing installations may continue longer than that. The current standard also recommends disabling SSID broadcast. Sounds like a security joke to me.
Companies that handle credit cards can expect to see revised security rules released in early October, according to the group responsible for maintaining the Payment Card Industry security standard for storage and processing of credit and debit cards.
The next version of the 12-part PCI Data Security Standard is aimed at clarifying questions that merchants and service providers had regarding the current PCI DSS 1.1 standard, says Bob Russo, general manager of the PCI Security Standards Council. Some changes in the forthcoming Version 1.2 may prompt merchants and service providers to make adjustments in their security practices to achieve PCI compliance in the future, he adds.
Full StoryEhtyar.