Thursday, September 24, 2015
Honor Services now provides cloud payment solution consulting to Michigan! PCI compliance must be established firmly on all payment systems to avoid steep fines. Are you ready?
Friday, September 18, 2015
By: Stan Washington
Date: September 18, 2015
By the time I finished writing this article, my Chrome Browser would have crashed about three times! Recently I upgraded to Windows 10 and I was pleasantly surprised with the new interface. I stayed away from Windows 8 altogether because of its terrible interface and hard to find applications.
Here are my thoughts:
Microsoft Edge Browser Works Well
Skeptically I went back to a place that used to be home, namely Microsoft. With previous dominance, who didn't use Internet Explorer? In recent events of security issues, I had to abandon the browser for Chrome and Firefox. When I loaded Windows 10, Chrome stopped working. There is a known problem between Chrome and Win10 so I decided to try Edge.
The browser is fast. I noticed webpages loaded faster than other browsers. This goes along with the spirit of Windows 10. It seems like they heard their customers complaints about the horrible Windows 8 interface and backtracked to the easy to navigate Windows 7 look and feel.
Security is in the Design
Next year cloud applications with payment solutions will be required to use a stronger cipher suite TLSv1.1 or TLSv1.2. SSLv3.0 will be a thing of the past and browser capabilities will change. If you have an older machine then you will need to upgrade your operating system and browser to be able to use these sites.
Minimal is Maximum
I like the minimalist design of the Edge Browser. With few icons and only a couple of options, I feel I can browse and go about my business. I am probably a typical internet surfer. I want to go to my site without the browser bugging me for plugins and other stuff. So far Edge meets my browsing needs.
Will I go back to Chrome? Probably so, but I now have added Microsoft back to the list!
Wednesday, September 9, 2015
By: Stan Washington
Date: September 09, 2015
What does it mean to be PCI Compliant?
The Payment Card Industry Data Security Standard (PCI DSS) is a set of requirements designed to ensure that ALL companies that process, store or transmit credit card information maintain a secure environment. Essentially any merchant that has a Merchant ID (MID).
What are the penalties to small businesses for being non-compliant?
The payment brands may, at their discretion, fine an acquiring bank $5,000 to $100,000 per month for PCI compliance violations. The banks will most likely pass this fine on downstream till it eventually hits the merchant. Furthermore, the bank will also most likely either terminate your relationship or increase transaction fees. Penalties are not openly discussed nor widely publicized, but they can be catastrophic to a small business.
It is important to be familiar with your merchant account agreement, which should outline your exposure.
What is PCI Audit Relief for EMV? (October 2015)
If more than 95% of merchant Visa transactions originate from Euro Pay, MasterCard, Visa (EMV) -compliant POS terminals that support both contact and contactless transactions, the merchant may apply for relief from the audit requirement for PCI compliance (but is still mandated to be PCI compliant).
What happens on October 1, 2015?
The party that has made investment in EMV deployment is protected from financial liability for card-present counterfeit fraud losses on this date. If neither or both parties are EMV compliant, the fraud liability remains the same as it is today. This date excludes automated fuel dispensers.
Fraud Liability Shift. MasterCard liability hierarchy takes effect. The party that has made investment in the most secure EMV options is protected from financial liability for card-present fraud losses for both counterfeit and lost, stolen and non-receipt fraud on this date.
Account Data Compromise Relief: On this date, if at least 95% of MasterCard transactions originate from EMV-compliant POS terminals, the merchant is relieved of 100% of account data compromise penalties.
Fraud Liability Shift. American Express will institute a fraud liability shift policy that will transfer liability for certain types of fraudulent transactions away from the party that has the most secure form of EMV technology.
Honor Services Office gets checked monthly on 300 or more points of compliance. Visit http://www.honorservicesoffice.com for safe payments.