The document discusses PCI DSS and PA DSS compliance. It provides an overview of the PCI Security Standards Council, changes to PCI DSS 2.0, and the relationship between PCI DSS and PA DSS. It notes that while using a PA DSS compliant application supports PCI DSS compliance, a merchant is still responsible for validating their own PCI DSS compliance. The document also summarizes investigative findings from incident responses and provides two case studies on achieving PCI DSS and PA DSS compliance with assistance from Trustwave.