PCI DSS

Meet PCI DSS using Utimaco HSMs as Root of Trust

Payment Card Industry Data Security Standards PCI DSS compliance mandates that all organizations that accept, acquire, transmit, process, or store cardholder data must take appropriate steps to continuously safeguard all sensitive customer information. One of the most efficient ways of contributing to this is by using encryption-based tools in which the keys are securely stored in a Hardware Security Module.

Any Payment Card Industry Data Security Standards security compliance solutions that secure and control enterprise data at rest, addressing critical portions of the PCI DSS 3.0 compliance control set for PCI DSS compliance requirements 2, 3, 4, 7, and 8 while also supporting additional components of the PCI DSS compliance requirements. PCI DSS security compliance solutions address encryption, access control, encryption key management and granular logging requirements across multiple use cases within the PCI DSS 3.0 compliance requirements — protecting unstructured files, structured databases including specific fields or columns within databases, files across traditional data centers, virtual environments, cloud implementations and big data environments.

No matter which suite of tools you chose to implement, encryption is usually the backbone of these tools. And let’s not forget, any encryption-based tool is only as secure as its key repository.

PCI DSS Utimaco Payment HSMs

By using Utimaco HSMs, customers can achieve compliance of PCI DSS operating Utimaco HSMs either in PCI HSM or in FIPS 140-2 mode.

Key features and benefits include:

• Utimaco HSMs are fit for Payment Card Industry Data Security Standards (PCI DSS) certification.
• Utimaco has a broad partner ecosystem offering various vendors working with solutions that enable PCI DSS compliance.

Click here to find a partner.