This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Key Project Information:OWASP PCI Project

From OWASP
Jump to: navigation, search

OWASP PCI Toolkit

OWASP PCI toolkit is an Open Source c# Windows form project, that will help you to scope the PCI-DSS requirements for your System Components. Beta version of this tool will be released May 2014

Introduction

The PCI toolkit is based on a decision tree assessment methodology, to help you define if your web applications are part of the PCI-DSS scope and within the PCI-DSS requirements. By decomposing , one by one , you will be able to create an assessment and a final report of your scope delimitation and which OWASP guidelines must be used

Licensing

OWASP PCI Toolkit is free to use. It is licensed under the Creative Commons Attribution-ShareAlike 3.0 license, so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.

Preview tool

Owasp-pci.png

Presentation

https://www.owasp.org/index.php/File:Pci-dss.pdf

Project Leader(s)

Johanna Curiel
Ignacio Salom

Related Projects

Repository

https://github.com/owaspjocur/OwaspPciToolkit

Reference Files

The OWASP SCP does not include identity values for the requirements, so please use this list.


News and Events

A presentation of the tool will be given at APPSEC EU 2014 For more info visit: https://www.owasp.org/index.php/OWASP_Project_Summit_2014/Home#tab=Tracks_and_Sessions


PCIDSS

Cornucopia-pcidss-ecommerce-guidelines-small.jpg

OWASP Cornucopia Ecommerce Website Edition is referenced in the new Payment Card Industry Security Standards Council information supplement PCI DSS E-commerce Guidelines v2, January 2013

Classifications

Owasp-incubator-trans-85.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png

What is PCI-DSS?

The PCI Security Standards Council offers robust and comprehensive standards and supporting materials to enhance payment card data security. These materials include a framework of specifications, tools, measurements and support resources to help organizations ensure the safe handling of cardholder information at every step. The keystone is the PCI Data Security Standard (PCI DSS), which provides an actionable framework for developing a robust payment card data security process -- including prevention, detection and appropriate reaction to security incidents.

Volunteers

Others

A prototype of the tool will be released in May 2014 -Beta version 1.0


Localization

Design

Feedback

Retrieved from "https://wiki.owasp.org/index.php?title=Key_Project_Information:OWASP_PCI_Project&oldid=175473"