atsec Speaks at 2011 China Mobile Payment Industry Summit
2011-12-08Beijing, China – atsec is proud to have attended and presented, at the 2011 China Mobile Payment Industry Summit held in Beijing on November 29th through the 30th. Xiangdong Gao, Senior Consultant for atsec, gave a speech regarding the topic of compliance trends and the importance of sharing payment security experience.
The presentation began with source and threat analysis of security incidents that happened in 2011, and continued with a talk about the development and security challenges mobile payment faces, with a focus on security compliance and current trends. With respect to the challenges and in regards to PCI DSS compliance, atsec shared their experience and best practices, and suggested to enhance the overall security of mobile payment based on international and national information security standards.
After the conference, Xiangdong Gao accepted an individual interview where he commented, ”The mobile payment industry has developed rapidly, and the security has been paid more and more attention because of the openness and sensitivity of payment information. As a standards-based information technology security services company, with many years of experience, atsec helps organizations that deal with cardholder data to establish and improve their information security management system as a whole, as well as help them to implement the security procedures and technologies based on industry standards and best practices. The requirements of the PCI DSS standard and its related guidelines can be used to protect mobile payment, in addition to the traditional cardholder data. We would like to work together with industry partners and continue to contribute to the development of mobile payment.”
For more information about this interview, please visit:
http://tech.hexun.com/2011-11-30/135851070.html
About atsec information security
atsec information security is an independent, standards-based information technology security services company with offices in the U.S., Germany,
Sweden, and China. atsec's services include formal laboratory testing and evaluation of information assurance (IA) and IA-enabled commercial off
the shelf (COTS) information technology, as well as information security consultancy.
atsec offers evaluation and testing services leading to formal certification of information security technology, including evaluations under
Common Criteria schemes in the U.S., Germany, and Sweden. In addition, the atsec U.S. organization operates a Cryptographic and Security Testing
Laboratory accredited under the Cryptographic Module Validation and the Cryptographic Algorithm Validation Programs of the National Institute of
Standards and Technology (NIST) in the U.S. and Communications Security Establishment Canada (CSEC) in Canada for validating cryptographic
modules under the FIPS 140-2 standard.
atsec is also an experienced Payment Card Industry (PCI) Security Standards Council Qualified Security Assessor (QSA), Approved Scanning Vendor
(ASV), and Payment Application Qualified Security Assessor (PA-QSA) and accredited as a third-party auditor for the North American Security
Products Organization (NASPO).
We work with leading global companies such as Apple, IBM, Hewlett-Packard, Samsung, Quantum Corporation, Red Hat, and ZTE Corporation.
