Category: PCI DSS Requirement 3
Protect stored cardholder data.
PCI DSS Requirement 3 relates to the fact that any type of sensitive data may be protected utilizing mechanisms such as encryption, one-way encryption (or hashing), truncation and masking. These are core mechanisms for protecting sensitive cardholder data from being compromised. Protection utilizing these mechanisms is often the centre of the security onion or last resort of protection should a malicious individual or hacker breach all of the higher layers of security controls. It should be noted that strong, industry-accepted encryption mechanisms with associated strong key management must be implemented for the protection to be effective. The typical analogy for bad encryption with poor key management would be for a person lock their front door to secure their home but leave the key in the lock.
Gemalto Payment HSM supports cloud tokenization requirements for secure mobile payment transactions and digitization of credit card credentials
- Ge?malto6, rue de la Verrerie - CS20001 92197 Meudon Cedex France
Products and services from Thales e-Security can help you implement effective, high assurance tokenization solutions to protect customer information, reduce…
- 900 South Pine Island Road, Suite 710Plantation, Florida, 33324
As of June 2010, PGP Corp was acquired by Symantec. Now PGP is available only from Symantec. Pretty Good Privacy…
DESlock+ is a simple-to-use encryption application for companies large and small. Take advantage of the optimized setup that speeds up…
- DESlock Limited3 Heron Gate Office Park Hankridge Way Taunton UK TA1 2LR
Voltage Secure Stateless Tokenization represents a paradigm shift in tokenization. It provides service at a higher performance and with greater…
HPE Security? Data Security delivers the SST Solution running on HPE NonStop servers, the platform of choice for payments processing…
As a full Data Loss Prevention (DLP) and Mobile Device Management (MDM) product available for Windows, Mac OS X and…
- Endpoint Protector GmbHGebhardstr. 7 D-88046 Friedrichshafen, Germany
The Vormetric Data Security Platform provides data protection products to secure and control enterprise data at rest. Vormetric (@Vormetric) is…
- 2545 N. 1st Street, San Jose, CA 95131United States