Reducing PCI DSS Scope: The Gateway Approach

Cover Image

One of the primary ways to counter the cost and organizational burden of PCI DSS compliance is to reduce overall scope within the enterprise, and the only way to reduce scope is to eliminate accessibility to sensitive card data in the first place. Introducing an application-level security gateway into the architecture shifts the PCI scope, centralizing and limiting the attention and investment your organization devotes to managing compliance.

Continue reading this white paper to learn how Intel SOA Expressway security gateway-generated tokens can replace card numbers with surrogates, removing systems from scope. As always, please consult your organization’s Qualified Security Assessor (QSA) - or other compliance professional - on your PCI DSS initiatives.

Feb 8, 2021
Mar 31, 2011
White Paper
Already a Bitpipe member? Log in here

Download this White Paper!