/dqweek/media/agency_attachments/JNb31gQnqJvAm0jqPxaV.png)
Follow UsAccording to a 2008 Gartner analyst survey, “encrypÂtion of data at rest and
data in motion, and network segmentation, are the top three technical challenges
that retailers face with PCI. More than two-thirds of surveyed merchants encrypt
data at rest;” Securing data at rest falls under PCI DSS requirement three.
SafeNet announced the availability of an encryption and key management security
solution that helps top retailers and other merchants comply with PCI DSS
requirement three: protect stored cardholder data-which is considered the most
difficult standard requirement to meet.
“The greatest challenge retailers faced with PCI DSS requirement three is
finding and implementing a solution that not only complies with the standard,
but doesn't slow business processes and decrease profits,” said Rana Gupta,
Director-India and SAARC, SafeNet. “SafeNet reduces the cost and complexity of
PCI compliance with an enterprise data protection (EDP) solution that protects
stored cardholder data across the enterprise from the core to the edge,” he
added.
PCI DSS was established by Visa, MasterCard, and other major credit card
companies and mandates the protection of sensitive payment account data that is
processed by merchants and payment processors. The standard has 12 requirements
organized around six basic elements including, build and maintain a secure
network, protect cardholder data, implement strong access control, and maintain
a vulnerability management program. Protecting stored cardholder data is the
most challenging requirement because it involves data encryption, which may
necessitate different solutions from several vendors. Deploying multi-vendor
point solutions, however, is expensive, causes interoperability problems, and
creates islands of security that are risky and difficult to manage.
SafeNet's single solution strategy eliminates the need to spend highly on
multiple vendor systems that have not been designed to work together and, more
imporÂtantly, ensures that stored cardholder data is secured and PCI compliance
is met. Additionally, SafeNet EDP provides a comprehensive foundation of
security within a common, integraÂted framework that allows retailers to select
and add the security controls that fit their data protection schemes. This
integrated approach assures data protection and compliance today and in the
future as needs and requirements change. SafeNet is a member of the PCI Security
Standards Council, the PCI Security Alliance and Vendercom.