PCI DSS Compliance

 

Next Steps
Overview CCPA DLP FERPA GDPR HIPAA PCI DSS DMaaS SDM DDM DCAP

Challenges


Per every Experian industry forecast in the last five years, the number of data breaches will continue to rise. Ponemon Institute studies of data breaches reveal that the average cost to a US organization exceeds $200 for each compromised customer record. With an average of 29,000 records compromised per incident, the cost of a data breach in this country can reach well over $5 million. In 2018, the global average was $3.86M per breach, or $148 per record, increases of 6.4 and 4.8%, respectively.

In addition to the significant financial harm that results from a data breach, there is an acute loss of trust between an organization and its customers. Both the breach and the fallout are usually well publicized and long remembered.

 

According to this SecurityMetrics analysis of Payment Card Industry (PCI) Data Breaches in 2018, despite the fact that 12 documented PCI Data Security Standard (DSS) requirements were largely in place, external (50%), internal (33%) breaches still continued.

 

Solutions


To help mitigate or even nullify the effects of data breaches, and help BFSI companies and other organizations managing credit card data comply with PCI DSS rules, the data discovery and masking functions in IRI Data Protector Suite products -- or the IRI Voracity platform -- find and protect primary account number (PAN), or credit card number values (along with other data at risk) in multiple data sources.

The applicable field-level security functions are strong encryption, SHA-2 cryptographic hashing, and tokenization.

For example in structured data sources, IRI FieldShield users apply their choice of data classification and protection functions to PANs and other columns in an intuitive, efficient, and flexible manner under Eclipse. For example, specification of an encryption cipher with a pass-phrase occurs in a simple dialog:

IRI Workbench - FieldShield User Interface

Here, format-preserving encryption is used to comply with PCI, to ensure that no changes are required to the table or database structure, and to possibly deceive hackers into thinking they have actual PANs.

Sample  Transaction Record Table (PCI Compliant)

These easy, yet powerful functions can also help you limit the financial and operational impact of a data breach. For example, Steam, a gaming distribution platform, suffered a data breach. As significant as the breach was, the overall impact to Steam was limited because the credit card values were encrypted.

FieldShield and the other IRI data masking products which have its data classification, scanning, and masking unctions thus provide simplicity, affordability, and peace-of-mind in finding and securing credit card data at rest (or in motion). They help organizations like this one meet PCI DSS v3 requirements for protecting stored cardholder data, while mitigating the risk of data loss.

Request More Information

Live Chat

* indicates a required field.
IRI does NOT share your information.