|
|
 |
 |
|
| What is Account Information Security | | |
| Account Information Security, or AIS, is a Risk Management program sponsored by Visa and run by Visa's members. The AIS program is a requirement for all entities participating in the Visa payment system i.e. those entities that process, store or transmit Visa cardholder account and/or transaction information, including merchants and service providers. | |
Who does AIS program apply to?
The AIS program is a requirement for all entities participating in the Visa payment system i.e. those entities that process, store or transmit Visa cardholder account and/or transaction information, including merchants, processors and Internet payment service providers. | |
What are the Payment Card Industry Data Security Standards (PCIDSS) requirements?
At a basic level, PCIDSS consists of 12 key requirements for protecting Visa cardholder account and transaction information:
- Install and maintain a firewall configuration to protect cardholder data
- Do not use vendor-supplied defaults for system passwords and other security parameters
- Protect stored cardholder data
- Encrypt transmission of cardholder data across open, public networks
- Use and regularly update anti-virus software or programs
- Develop and maintain secure systems and applications
- Restrict access to cardholder data by business need-to-know
- Assign a unique ID to each person with computer access
- Restrict physical access to cardholder data
- Track and monitor all access to network resources and cardholder data
- Regularly test security systems and processes
- Maintain a policy that addresses information security
The PCIDSS standards offered by the AIS program are designed to protect the confidentiality, availability and integrity of customer data.
The standards represent the key requirements for handling or managing of Visa account information.
| | | |
|
|
|
