Chapter 7

Protecting cardholder data

Abstract

This chapter explains how to protect the card data stored in your systems, as well as how to protect data while it is in transit on your network.

Keywords

Data at Rest
Encryption
Information in this chapter
• What is data protection and why is it needed?
• Requirements addressed in this chapter
• PCI requirement 3: protect stored cardholder data
• What else can you do to be secure?
• PCI requirement 4 walk-through
• Requirement 12 walk-through
• Appendix A of PCI DSS
• How to become compliant and secure
• Common mistakes and pitfalls
• Case study
The Payment Card Industry Data Security Standard (PCI DSS) was created to decrease the risk of electronic card transactions by mandating security ...

Get PCI Compliance, 4th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial