VevoCart is an ASP.NET PA-DSS Certified eCommerce application which is designed
and implemented to meet all PCI compliance requirements.
VevoCart processes payment through VevoPay which has been fully audited by the qualified
assessor and is a PA-DSS certified payment application.
PCI Data Security Standard is the payment security requirement for e-commerce merchant
and it was developed by PCI security standard council.
Security requirements are divided into many sections. These include building and
maintaining a secure network, cardholder protection, maintaining a vulnerability
management program, strong access control measures implementation, network monitoring
and testing and information security policy maintenance.
E-commerce business must adhere to this security requirement to protect both customers
and business information.
The core of the PCI DSS is a group of principles and accompanying requirements,
around which the specific elements of the DSS are organized:
Build and Maintain a Secure Network
Requirement 1: Install and maintain a firewall configuration to protect cardholder
Requirement 2: Do not use vendor-supplied defaults for system passwords and other
Protect Cardholder Data
Requirement 3: Protect stored cardholder data
Requirement 4: Encrypt transmission of cardholder data across open, public networks
Maintain a Vulnerability Management Program
Requirement 5: Use and regularly update anti-virus software
Requirement 6: Develop and maintain secure systems and applications
Implement Strong Access Control Measures
Requirement 7: Restrict access to cardholder data by business need-to-know
Requirement 8: Assign a unique ID to each person with computer access
Requirement 9: Restrict physical access to cardholder data
Regularly Monitor and Test Networks
Requirement 10: Track and monitor all access to network resources and cardholder
Requirement 11: Regularly test security systems and processes
Maintain an Information Security Policy
Requirement 12: Maintain a policy that addresses information security
For more informaiton, please visit https://www.pcisecuritystandards.org/