A new version of the Payment Card Industry Data Security Standard scheduled for release later this year is likely to attract more attention for what it leaves unaddressed rather than what it changes, analysts say. The new standard appears to leave largely untouched several issues where companies are looking for more guidance from the PCI Council, analysts said. Most of the changes in the new version are going to be incremental in nature and unlikely to cause major headaches for companies covered by PCI. The more significant changes in PCI DSS include one that requires companies to identify all locations on their network where cardholder data resides.”]
Source: https://www.csoonline.com/article/2125799/pci-dss-changes-leave-questions-unanswered.html

