![]() Your mileage may vary.Ī full PCI scan on a machine with a TM database on it WILL provide FALSE POSITIVES, if you are using SVG maps and pick your own seats. Tests on a very large database (400,000 patrons) with a lot of other data on a fast server yielded a total of 131 possible patrons within 8 seconds. Data that will not be found are phone numbers like 51 or conditions where numbers are separated by something other than spaces. It doesn't matter if there are one or more spaces between the numbers or not. This means that anything with at least 12 contiguous digits in the various search fields might result in a match (note: it may not be a credit card). When using this search option, patrons will be listed that have a series of 3 or 4 numbers repeated 4 times. ![]() Use this feature to identify where there may be data attached to patrons that could be construed as a possible clear text credit card in violation of PCI DSS standard 3.3. Does not supersede stricter requirements in place for displays of cardholder data such as on a point-of-sale receipt. Not applicable for authorized people with a legitimate business need to see the full PAN. Mask PAN when displayed the first six and last four digits are the maximum number of digits you may display.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |