PCI DSS 2.0 addresses virtualization

PCI DSS 2.0, the new standard for handling credit card data, finally includes virtualization-specific guidelines. But admins still have questions.

The new Payment Card Industry Data Security Standard is out, and it finally attempts to address regulatory compliance in virtual infrastructures. But there are still questions about the details of PCI DSS 2.0

The old standard didn't even mention the word virtualization, which left a lot of confusion. PCI DSS 2.0 attempts to clarify that, specifically stating that virtual machines (VMs) can handle credit card data -- as long as each VM is used for a single purpose and keeps such data separate from the rest of the IT infrastructure. There isn't much detail on virtualization, however, and some admins say PCI DSS 2.0 is too vague or even contradictory in parts.

Find out how PCI DSS 2.0 affects virtualization in this edition of This Week in Virtualization. There's also news about the latest Vblocks for SAP and VDI deployments.

This Week in Virtualization

Play now:

You must have Adobe Flash Player 7 or above to view this content.See https://www.adobe.com/products/flashplayer to download now.
Download for later:

PCI DSS 2.0 addresses virtualization
• Internet Explorer: Right Click > Save Target As
• Firefox: Right Click > Save Link As

Dig Deeper on Server virtualization compliance and governance

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.