PCI Requirement 4: Encrypt transmission of cardholder data across open, public networks
credit cards

PCI Requirement 4: Encrypt transmission of cardholder data across open, public networks

By bosluistepel | BosluisTepel_TidBits | 31 Mar 2020


To comply with PCI DSS requirement 4, you need to know where you send your cardholder data. Here are common places where primary account numbers (PAN), and sometimes CVC/CVV/CV2 numbers, are sent:

  •   Processors
  •   Backup services
  •   Third parties that store or handle PAN (usually payment providers)
  •   Outsourced Management of Systems or Infrastructure
  •   Corporate Offices

You then need to use strong encryption and have updated security policies in place when you transmit this cardholder data over any open and/or public networks.



BosluisTepel_TidBits
BosluisTepel_TidBits

Anything and everything in the world of a software engineer working with online payments and PCI DSS standards in the world of online gaming including anything I find interesting

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.