It’s good to see a ‘vendor’ understanding that providing a secure solution is extremely valuable to the retail community…
VeriFone Takes Lead in Securing Card Payments with PA-DSS
Will Only Provide PA-DSS Audited Payment Applications in Initiative that Supports New Rules Governing PCI Compliance for All Levels of Merchants
VeriFone Takes Lead in Securing Card Payments with PA-DSS - MarketWatch.

Good article on the Compliance Dymystified blog…
PCI Blog - Compliance Demystified » Blog Archive » Technology is not the answer to compliance.

It’s interesting that in this very educated, very suspicious society, we still at times need some help in understanding the hidden agendas of the organizations that we work with.
In the world of information security (particularly in the retail space) things are still a little ‘Wild West’ as there are not a lot of well-defined boundaries between consulting, selling product, and auditing. This creates an interesting environment where conflict of interest issues abound.
There are two areas in particular that I think it is extremely important to understand properly:

A PCI consultant …

Dave Whitelegg has a blog that I’ve just stumbled on and the first article I see is this one:
IT Security Expert: Security is a Process, not a Product.
This is a great post and also contains a link to a great article by Bruce Schneier - here - the gist of things here should echo what I’ve been posting about - information security is not something that a vendor with a magic box is going to provide….
Security is a process, an integrated, wholistic approach that incorporates technology, technology products, internal process, …