atsec Completes PCI DSS Security Assessment for Damai
2011-06-13Beijing, China – atsec information security is pleased to announce that the cardholder data environment of the refund business of Damai, which is the website brand of the Beijing Pony Media Group, has passed the compliance assessment performed by atsec based on the PCI DSS (Payment Card Industry Data Security Standard) V1.2. PCI DSS has been widely recognized and used as the international security compliance standard of choice for the payment industry. PCI DSS compliance focuses on overall requirements, from software and hardware configuration, network architecture and operation, to security mechanisms and more. It also mandates the implementation of high level protection for cardholder data in areas such as storage, processing, and transmission.
The CEO of Damai, Mr. Jie Cao, remarked on the success of the project: “As an E-commerce company, Damai has always worked hard to ensure the safety and integrity of our customer’s sensitive information. We worked together with the atsec team on this project using an international security standard to perfect and strengthen Damai’s security architecture and the internal risk control system. We appreciate atsec’s efforts, and look forward to further cooperation.”
atsec’s lead QSA on the project, Mr. Jinyun Chen, commented: “A well implemented information security management system and the use of security technology protect an organization’s business and makes operations more controllable and steady. PCI DSS, as the best practice for the payment card industry, can be used to protect the organization’s network security and also ensure the security of cardholder data. atsec is a world leader in the field of security audit, assessment, testing, and consulting services, and is glad to make this contribution to information security in China.”
About atsec information security
atsec information security is an independent, standards-based information technology security services company with offices in the U.S., Germany, Sweden, and China. atsec's services include formal laboratory testing and evaluation of information assurance (IA) and IA-enabled commercial off the shelf (COTS) information technology, as well as information security consultancy.
atsec offers evaluation and testing services leading to formal certification for IT security, including evaluations under Common Criteria schemes in the U.S., Germany, and Sweden. This is supported by cryptographic module and algorithm testing under the Cryptographic Module Validation Program of the National Institute of Standards and Technology (NIST) in the U.S. and Communications Security Establishment Canada (CSEC) in Canada.
atsec is also an experienced Payment Card Industry (PCI) Security Standards Council Qualified Security Assessor (QSA), Approved Scanning Vendor (ASV), and Payment Application Qualified Security Assessor (PA-QSA).
We work with leading global companies such as Apple, IBM, Hewlett-Packard, Honeywell, Quantum Corporation, Red Hat, NationZ, Huawei, and ZTE Corporation.
About Damai
Beijing Pony Media Group was established in 1999 and is an incorporated company, having integrated businesses such as the ticket business, amusement, technology, tourism, logistics, and more. There are three brands under Pony Media: piao.com.cn, Damai, and MATIX.
Damai is one website under Pony Media, and is the amusement business platform with new ideas. It combines the need of amusement consumption from network customers, with the mode of market channels development on the top level of the industry chain. As a result, it established a platform for information mining and channels market extension, and formed a new business mode beneficial to both providers and consumers.
For more information about Damai, please visit: www.damai.cn.
