The PCI DSS is a set of standards for security, created by the Payment Card Industry. It provides a framework on how computer systems handling credit card transactions should be configured. With recent high profile intrusions, including the Target intrusion of late 2013 resulting in the theft of over 40 million cards, as well as the more recent Home Depot attack; it has become even more important that any company, processing credit card information, ensures that they are secure. In this section, we'll approach some specific controls of the PCI DSS standard, and see how you can configure Puppet to remain in compliance. In some cases, we'll provide concrete examples, and in others, we'll provide references to ...