Comments: pushback against the external auditor (if they can do it, so can you!)

https://www.pcisecuritystandards.org/education/qsa_training.shtml
"At this time PCI SSC does not offer QSA certifications to individuals who do not work for validated QSA Companies. "

This regime of compliance imposed on the free market is another attempt to herd unwilling consumer/merchant groups into a monopoly. It does beg the question with the ever changing regime of network configurations ie WiFi and non-primary carrier based networks "What further complications will be required to contain the herd?", perhaps a better mouse trap or cattle prod. As it stands now the total lack of risk to the payment processor and the usurious fee structure are compounded by the security regime that is yet another array of sub-monopolies. Audits be dammed the regime is frot with assumptions that presume an unchallenged future.

Revolution Money (acquired by American Express) is a sign of the future by removing the interchange fee they where able to achieve acceptance by merchants and customers. The erosion of the monoliths has begun in earnest and no surer sign of this erosion can be found then the attempt to avert risk from the usurious monolith via Audit Standards that are not available, thus rendering their monopoly moot.

The challenged monopoly renders the security suggestions, mandates, audit regimes, and professional certifications worthless, in that the simple culling of the fee structure causes it's collapse. The now questionable monopoly is fractured and its assumptions on profit are called into question. The simple answer is with no actual risk being attributed to the payment processor why should they garner unusual fees and mandate unusual requirements. The merchant/customer herd is pragmatically judging the fee structure versus the service and the risk attributed to the parties involved and the processing regimes are coming up short.

The security regime being a sub-domain of the payment processing regime is only reinforcing via fear and unattainable standards another meaningless wall around a fortress under siege, which will prompt the barbarians consumers and merchants to go around and find a more cost effective road.


Posted by jimmy at January 2, 2010 08:02 AM
Post a comment









Remember personal info?






Hit Preview to see your comment. 
MT::App::Comments=HASH(0x55c9a5709798) Subroutine MT::Blog::SUPER::site_url redefined at /home/iang/www/fc/cgi-bin/mt/lib/MT/Object.pm line 125.