chapter 1. Payment-card industry : an evolution -- chapter 2. Card anatomy : the essentials -- chapter 3. Security and the payment-card industry -- chapter 4. Payment Card Industry Data Security Standard (PCI-DSS) -- chapter 5. The Payment Application Data Security Standard (PA-DSS) -- chapter 6. Enterprise approach to PCI compliance -- chapter 7. Scoping for PCI compliance -- chapter 8. Requirement 1 : build and maintain a secure network -- chapter 9. Requirement 2 : vendor-supplied defaults, system passwords, and security parameters -- chapter 10. Requirement 3 : protect stored cardholder data -- chapter 11. Requirement 4 : securing cardholder information in transit -- chapter 12. Requirement 5 : use and regularly update antivirus software -- chapter 13. Requirement 6 : develop and maintain secure systems -- chapter 14. Requirement 7 : restrict access to cardholder data by business need to know -- chapter 15. Requirement 8 : access-control requirements for PCI environments -- chapter 16. Requirement 9 : restrict physical access to cardholder data -- chapter 17. Requirement 10 : logging and monitoring for the PCI standards -- chapter 18. Requirement 11 : security testing for the PCI environment -- chapter 19. Requirement 12 : information security policies and practices for PCI compliance -- chapter 20. Beyond PCI compliance.