Glenbrook Book Education Jobs Views Archives Store Advertise About SUBSCRIBE:

Demystifying Encryption For PCI DSS

Tags » Data Security, PCI Compliance » Comments (0)

Roger Nebel writes for SearchSecurity.com about the encryption requirements to comply with the Payment Card Industry Data Security Standard - PCI DSS. "Requirement 3.4 stats that merchants must render [the Primary Account Number], at minimum, unreadable anywhere it is stored (including data on portable digital media, backup media, in logs, and data received from or stored by wireless networks)." Nebel's a fan of using a hashing approach to protect card information - pointing out that hash functions are "readily available to programmers as this is the normal way passwords are stored and used in modern operating systems."

Posted: Dec 6, 2006 05:31 AM Pacific | Permalink | |

Tweet This

« Previous Story

Add your comment... (note that all comments are reviewed before they're published)

You can follow this conversation by subscribing to the comment feed for this post.

Payments News on Facebook

Jobs by SimplyHired

PAYMENTS NEWS IS PRODUCED BY AND IS A SERVICE MARK OF GLENBROOK PARTNERS, LLC
ISSN 1556-4487

Glenbrook's Consulting Services

Innovation and Strategy
Payments Product Development
Payments Market Assessments
Payments Vendor Selection
Merchant Payments Optimization
Payments Risk Management
To discuss how Glenbrook can
help you, email us:

Glenbrook's Payments Education

Payments Boot Camps
Payments Essentials Webinars
Private Payments Workshops
For more information on Glenbrook's payments education, email us:

Tools for Payments Professionals

Glenbrook Writings
Payments News
Payments Views
Payments Jobs
Payments Education
Payments Bookstore
To send us news that you'd like us to cover on Payments News, email us:

Follow Payments News on Twitter for Real-Time Updates