News

The CCSS and Multi-Sig Wallet Management

2022-05-13T11:32:40+13:00

In this post we highlight the benefits of multi-signature wallets and applying the CCSS to the design and management of a multi-sig wallet.What is a Multi-Sig Wallet?When conducting a transaction on a blockchain, the transaction is signed by the initiator of the transaction with their private key. The signed transaction is then validated by [...]

The CCSS and Multi-Sig Wallet Management2022-05-13T11:32:40+13:00

Version 4 SAQs are Out – What’s New

2022-05-06T09:37:01+13:00

It’s finally happened – on April 1st NZ time, PCI DSS v4.0 was released, and then on April 28th we saw the Self-Assessment Questionaries released. In this post we cover at a high level what’s changed and what stays the same. What Stays the Same The good thing about the SAQs is that the [...]

Version 4 SAQs are Out – What’s New2022-05-06T09:37:01+13:00

Service Providers – What is Changing in PCI DSS v4.0?

2022-05-06T09:21:15+13:00

Service providers have always had a slightly different focus in PCI DSS because as a service provider you have the ability to impact your customers’ PCI DSS compliance and overall security. Whether that’s through providing certain managed services like managed firewalls or data centres, your customers expect you to be able to demonstrate that [...]

Service Providers – What is Changing in PCI DSS v4.0?2022-05-06T09:21:15+13:00

What is a CCSSA? Definition and Thoughts

2022-05-14T11:17:23+13:00

What is a CCSSA? CCSSA stands for CryptoCurrency Security Standard Auditor. If you pass the CCSS auditor certification exam and are accepted into the CCSSA program, then you can audit systems under CCSS that implement a cryptocurrency wallet. As of the date of this article (April 2022), the CCSS auditor exam is still [...]

What is a CCSSA? Definition and Thoughts2022-05-14T11:17:23+13:00

PCI DSS & Cryptocurrency Security Standard (CCSS) – A Marriage Made for Crypto Security

2022-04-14T18:07:15+13:00

The term "crypto" covers the fast-growing sector which includes cryptocurrencies, DEFI, metaverses, NFTs, cryptocurrency exchanges and numerous other innovations. What has become apparent over the short time this sector has grown out of a cyberpunks project into a valid replacement for fiat as a unit of exchange and a store of value is [...]

PCI DSS & Cryptocurrency Security Standard (CCSS) – A Marriage Made for Crypto Security2022-04-14T18:07:15+13:00

What is the CryptoCurrency Security Standard (CCSS)?

2022-07-13T17:42:22+13:00

What is CryptoCurrency Security Standard (CCSS)? Article Updated July 2022 for CCSS Version 8.0 The word "crypto" was initially used as an abbreviation of cryptocurrency. However, with the growth of cryptocurrency and the creation of new protocols, standards, assets such as NFT and finance services aimed at cryptocurrency such as DEFI. "Crypto" is now [...]

What is the CryptoCurrency Security Standard (CCSS)?2022-07-13T17:42:22+13:00

Rapid Requirements: Responsibility Matrix

2022-04-14T17:43:11+13:00

Supporting Your Customers As a service provider, your customers are always looking for more information about which requirements they are responsible for and which ones you're responsible for. Some service providers have provided responsibility matrix documents, others have provided their AoC, others have provided other documents. But in v4.0, there's a new requirement [...]

Rapid Requirements: Responsibility Matrix2022-04-14T17:43:11+13:00

PCI v4.0 by the Numbers

2022-04-14T17:41:53+13:00

What's New in Version 4? There's a lot of new things in version 4. In fact, there are 64 new requirements that you might be looking at by 31 March 2025. New Requirements for Merchants New Requirements for Service Providers New Requirements Applicable When You Use v4 (by March 2024) New Requirements [...]

PCI v4.0 by the Numbers2022-04-14T17:41:53+13:00

Rapid Requirements: Let’s Define “Periodic”

2022-04-14T17:45:10+13:00

How Often is Periodic The term "periodic" is not new to PCI DSS. But in Version 4, we see a new approach that wraps more governance around the meaning of periodic in Section 7 of PCI DSS V4.0. Periodic becomes a measure that is unique to every organisation. Governance plays a big role [...]

Rapid Requirements: Let’s Define “Periodic”2022-04-14T17:45:10+13:00

Rapid Requirements: Password Changes in Version 4.0!

2022-04-14T17:43:56+13:00

Let's Talk About Passwords If there's one thing that we know people have been waiting for, it's finding out whether PCI DSS would finally modernise password requirements. We are so excited to finally be able to tell you what's coming up in the Version 4 changes for passwords (in fact, some of these [...]

Rapid Requirements: Password Changes in Version 4.0!2022-04-14T17:43:56+13:00