PCI  Security standarts council released documentation highlighting the changes to be introduced in October for PCI-DSS and PA-DSS standards. Version 2.0 of PCI-DSS and PA-DSS do not introduce any major requirements but rather updates and clarify some points in the standarts.

• Reinforcement of need for thorough scoping exercise prior to PCI DSS assessment in order to understand where cardholder data resides
• Support for centralized logging included in PA-DSS to promote more effective log management
• Validation, within certain requirements, of risk-based approach for addressing vulnerabilities, allowing organizations to consider their specific business circumstances and tolerance to risk when assessing and prioritizing vulnerabilities
• Greater alignment between PCI DSS and PA-DSS to facilitate stronger security practices.

For the detail information for changes, please visit https://www.pcisecuritystandards.org/pdfs/summary_of_changes_highlights.pdf