Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.

  • Apple
  • Android
  • Windows Phone
  • Android

To get the free app, enter your email address or mobile phone number.

Hacking Point of Sale: Payment Application Secrets, Threats, and Solutions 1st Edition

4.4 out of 5 stars 22 customer reviews
ISBN-13: 978-1118810118
ISBN-10: 1118810112
Why is ISBN important?
ISBN
This bar-code number lets you verify that you're getting exactly the right version or edition of a book. The 13-digit and 10-digit formats both work.
Scan an ISBN with your phone
Use the Amazon App to scan ISBNs and compare prices.
Trade in your item
Get a $6.00
Gift Card.
Have one to sell? Sell on Amazon
Buy used On clicking this link, a new layer will be open
$27.59 On clicking this link, a new layer will be open
Buy new On clicking this link, a new layer will be open
$49.77 On clicking this link, a new layer will be open
More Buying Choices
52 New from $29.21 42 Used from $27.59
Free Two-Day Shipping for College Students with Amazon Student Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student


Up to 50% off select books
Featured titles are up to 50% off for a limited time. See all titles
$49.77 FREE Shipping. Only 11 left in stock (more on the way). Ships from and sold by Amazon.com. Gift-wrap available.
click to open popover

Frequently Bought Together

  • Hacking Point of Sale: Payment Application Secrets, Threats, and Solutions
  • +
  • PCI Compliance, Fourth Edition: Understand and Implement Effective PCI Data Security Standard Compliance
  • +
  • PCI DSS 3.1: The Standard That Killed SSL
Total price: $147.92
Buy the selected items together

Editorial Reviews

From the Back Cover

Implement bulletproof point of sale security for your payment transactions

Hacking Point of Sale takes a unique look at point of sale security from the viewpoint of your business, not a credit card company. The book provides proven techniques that are designed to help brick-and-mortar merchants properly protect their entire in-store payment infrastructure. The book also includes a POS vulnerability rank calculator to help you perform a risk assessment and security control evaluation as you implement recommendations to improve your existing infrastructure.

  • Eliminate breaches in security related to design flaws and physical vulnerabilities
  • Use point-to-point encryption to protect your front-end and back-end payment systems
  • Close gaps in protection provided by PCI security standards
  • Understand the anatomy of a credit card and how payment cards can be compromised
  • Explore the most relevant standards for payment application security, including PCI, FIPS, ANSI, EMV, and ISO
  • Get practical recommendations on powerful payment application security controls designed to protect against a wide array of common breach attempts

About the Author

Slava Gomzin is Director of Information Security at PCCI (Parkland Center for Clinical Innovation). Prior to joining PCCI, Slava was a security and payments technologist at Hewlett-Packard, where he helped create products that are integrated into modern payment processing ecosystems using the latest security and payments technologies. Before HP, he worked as a security architect, corporate product security officer, R&D and application security manager, and development team leader at Retalix, a Division of NCR Retail. As PCI ISA, he focused on security and PA-DSS, PCI DSS, and PCI P2PE compliance of POS systems, payment applications, and gateways. Before moving into security, Slava worked in R&D on design and implementation of new products including next-generation POS systems and various interfaces to payment gateways and processors. Slava currently holds CISSP, ECSP, and Security+ certifications. He blogs about information security and technology at gomzin.com.
NO_CONTENT_IN_FEATURE


Product Details

  • Paperback: 312 pages
  • Publisher: Wiley; 1 edition (February 17, 2014)
  • Language: English
  • ISBN-10: 1118810112
  • ISBN-13: 978-1118810118
  • Product Dimensions: 7.4 x 0.6 x 9.3 inches
  • Shipping Weight: 1.2 pounds (View shipping rates and policies)
  • Average Customer Review: 4.4 out of 5 stars  See all reviews (22 customer reviews)
  • Amazon Best Sellers Rank: #249,886 in Books (See Top 100 in Books)

Customer Reviews

Top Customer Reviews

Format: Paperback
The only negative thing to say about Hacking Point of Sale: Payment Application Secrets, Threats, and Solutions is its title. A cursory look at it may lead the reader that this is a book for a script kiddie, when it is in fact a necessary read for anyone involved with payment systems. The book provides a wealth of information that is completely pragmatic and actionable. The problem is, as the book notes in many places, that one is constantly patching a system that is inherently flawed and broken.

Often after a major information security breach incidents, a public official (always in front of cameras and with many serious looking people standing in the wings) will go on TV and say something akin to “we have to make sure this never happens again”.

Last year, Target and Neiman Marcus were the major victims. This month, it’s eBay. What next month will bring isn’t known, but it will be major. But after hundreds of millions of records breached, it’s not that anyone is saying it won’t happen again. Rather, it’s inevitable it will happen many more times.

There are a number of good books on PCI, but this is the first one that looks at the entire spectrum of credit card processing. Author Slava Gomzin is a security and payments technologist at HP and as clearly evident in the book, he lives and breathes payment technology and his expert knowledge is manifest in every chapter. His technical expertise is certain to make the reader much better informed and understand the myriad issues involved.

The book provides an excellent overview to the workings of payment systems and Gomzin is not shy about showing how insecure many payment systems are. Its 9 chapters provide a good combination of deep technical and general detail.
Read more ›
Comment 9 people found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback Verified Purchase
Thinking about all those recent POS attacks? This book explains why, in detail, and provides a masterly overview of PCI requirements, and then some. One of the best books on the subject, well written and the technical explanations are excellent.
Comment One person found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback Verified Purchase
For a retail industry professional, or any business using Point of Sale devices, Mr. Gomzin has written an outstanding summary of the contemporary technical concerns related to POS security. The book is written with a technical flair, yet is well illustrated and notated with enough dialog and appropriate descriptions to cover a broad audience of readers. This book is an essential guide for the current PCI standards, and the expected security accountability of the installed POS. Mr Gomzin has a genuine gift at explaining complex scenarios and sorting out the essential details in a fluid and professional style. This is an important reference book for anyone in the retail technology business and I highly recommend and applaud Mr. Gomzin for his work. I have no doubt this is the first of more books from this talented author.
Comment 2 people found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback Verified Purchase
I came across this book shortly after starting a new job at a large credit card issuer. My job involves developing/supporting payment authentication capabilities and I wanted to find a book that would provide a good deep dive into payment processing and the risks involved. At work I had access to dozens of technical specs and overview documents to ramp up, but this book took much of that information and condensed/arranged it into a format that was much easier to digest. I would recommend this book to anyone in the payment industry as well as merchants that want to have a better understanding of payment infrastructure and vulnerabilities.
Comment 2 people found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Kindle Edition
Don’t let the title of the book fool you, it’s intended audience isn’t the nefarious hacker types, quite the contrary, the book should become required reading for anyone involved in electronic payments, I would even say not even just those involved in specifically point-of-sale, as quite a few of the topics covered carry over into eCommerce as well.

The language of the book is not overly technical, in fact those involved in the business side can easily understand the concepts outlined in the book and it is a good resource to understand terminology and basic architectures. For the security geeks there are also code samples and more technical details on various topics.The book outlines the architecture of payment systems and identifies inherent vulnerabilities as well as why PCI is not enough, with concrete examples that you can test yourself.
Comment 2 people found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback Verified Purchase
Mr. Gomzin provides valuable insight into the problems with current point-of-sale systems. If it added anything, I would repeat all the other reviews. The book is as good (or better) as these reviews indicate. Hopefully this book will be a starting point to get retailers to lock down their systems to protect cardholder data.

Great book with many references for more in depth research provided through out the whole book.
Comment One person found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Kindle Edition Verified Purchase
I have read the book twice in one weekend. It is full with details and explanation about the vulnerabilities of the point of sale. I really enjoyed learning about the POS security questionnaire and it opened my eye to what it needs to take place to protect sensitive data. I will highly recommend the purchase and integration of the advices presented in that book. Adley DaSilva
Comment One person found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse

Most Recent Customer Reviews

Set up an Amazon Giveaway

Hacking Point of Sale: Payment Application Secrets, Threats, and Solutions
Amazon Giveaway allows you to run promotional giveaways in order to create buzz, reward your audience, and attract new followers and customers. Learn more
This item: Hacking Point of Sale: Payment Application Secrets, Threats, and Solutions