One year should be plenty of time to get caught up on DSS 2.0, although those who are still not compliant with 1.2 have a lot of catching up to do.
The Payment Card Industry Security Standards Council (PCI SSC) issued version 2.0 of the Payment Card Industry Data Security Standards (PCI DSS) this week, making widely available the new document, which contains 12 minor changes.
PCI DSS 2.0 takes effect on Jan. 1, but merchants won’t have to become fully compliant with the new version until Dec. 31, 2011. The release of PCI DSS 2.0 also begins a new three-year lifecycle of the development cycle. The document won’t undergo any further changes until 2014.