× Welcome to SGCyberSecurity forum!

Feel free to discuss any topics relating to cybersecurity with the rest of the security community in this forum.

Topic-icon Payment Card Industry Data Security Standard (PCI DSS)

55 years 1 week ago #225 by o_mandyplayhard

In general, no cardholder data should ever be stored unless itƒ??s necessary to meet the needs of the business. Sensitive data on the magnetic stripe or chip must never be stored. ?ÿIf your organization stores PAN, it is crucial to render it unreadable, for instance, [by] obfuscation [or] encryption.

Please Log in or Create an account to join the conversation.

55 years 1 week ago #248 by o_mandyplayhard

Yes, u must use secure/encrypted channel.

Please Log in or Create an account to join the conversation.

55 years 1 week ago #254 by o_kohsk854

okie. thanks for the info!

Please Log in or Create an account to join the conversation.

10 years 4 months ago #223 by o_kohsk854

One of the control objectives "Protect Cardholder Data" requires <strong>Protect stored cardholder data</strong> and <strong>Encrypt transmission of cardholder data across open, public network</strong>. Just wondering what are the measures/controls to protect and encrypting the data? mind sharing?

Please Log in or Create an account to join the conversation.

10 years 4 months ago #229 by o_kohsk854

if all sensitive data is not supposed to be stored in the servers, means it must be processed in a secured mode?

Please Log in or Create an account to join the conversation.