PCI compliant? Want to stay that way? Then you’re going to have to upgrade this year to version 2.0 of the PCI DSS, said Bob Russo, General Manager of the PCI Security Standards Council.
What’s different in version 2.0? Mostly clarifications, said Russo. It isn’t that much different than 1.0 beyond clarifications. Lot more focus on centralized logging and scoping, which is knowing where all your data is at the beginning of compliance, Russo said.
As for cloud and virtualization PCI compliance issues, Russo said to look for guidance coming out this year.