The Payment Card Industry (PCI) Security Standards Council released a revised version of its Data Security Standard, PCI DSS 4.0, which delineates the minimum-security requirements that merchants must meet when they store, process, and transmit cardholder data.
PCI DSS v3.2.1 will be retired on 31 March 2024 after which PCI DSS v4.0 will be the only active version. Many of new requirements in PCI DSS are best practices until 31 March 2025, after which they are required and must be fully considered as part of any PCI DSS v4.0 assessment.
Join members from the PCI Security Standards Council and F5 as they outline the new PCI DSS 4.0 e-commerce requirements, how to prepare, and steps you can take now to meet the new client-side requirements (6.4.3 and 11.6.1) to ensure the integrity of e-commerce web pages that handle payments.
How digital skimming and Magecart attacks are conducted and why they are successful
What new PCI DSS 4.0 client-side requirements (6.4.3 and 11.6.1) were added to address these challenges
Best practices and resources available for meeting those requirements
Timelines you should be aware of and the steps you can take now
Angel Grant, CISSP
Lauren Holloway, CISSP, CISM, CISA
Director, Data Security Standards
PCI Security Standards Council