August 24, 2010

Verizon has put its cloud computing offering (Verizon Computing as a Service) through a Payment Card Industry Data Security Standard audit for storing, processing and transmitting credit card information. This means that banks and other companies can potentially run payment applications in Verizon's data centers.

To become PCI DSS-validated, Verizon CaaS underwent a third-party examination of its policies, procedures and technical systems, as well as an on-site assessment and systemwide vulnerability scan.

The PCI DSS, developed by the PCI Security Standards Council, helps facilitate adoption of consistent data security measures globally. Intended to help organizations proactively protect customer account data, the PCI DSS includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures.

Verizon says its transaction services network and IP application hosting service, delivered via U.S. managed-hosting centers that handle the management and monitoring of customers' Web infrastructure and applications, also meet PCI DSS requirements. Verizon also offers PCI-related professional services, as well as the Verizon Online Compliance Program for the Payment Card Industry.