A Promethean Struggle
PCI's Lessons for Passwords
The PCI Security Standards highlight the different expectations between compliance and security. They’ve also been a driver for improving appsec. We’ll take a look at how to frame PCI within risk management and the role pentesting plays in both appsec and compliance. Then we’ll examine the ways handling card data can inspire better security for the password ecosystem.
Watch On Demand Now
What you will take away from this talk:
- How to approach security vs. compliance effectively
- Steps to make a PCI pen test useful
- What protecting card data can teach us about protecting passwords