pci compliance technical overview 2008
DESCRIPTION
PCI Compliance Technical Overview 2008. RM PCI Calendar. Sept 2006: Official 15.1 PCI Release Sept 2006: 15.1 certified PCI Compliant Jan 2007: VISA approves certification May 2007: Official 16.0 PCI Release Dec 2007: 16.0 certified PCI Compliant Awaiting VISA certification approval. - PowerPoint PPT PresentationTRANSCRIPT
![Page 1: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/1.jpg)
PCI ComplianceTechnical Overview
2008
![Page 2: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/2.jpg)
RM PCI Calendar
Sept 2006: Official 15.1 PCI Release
Sept 2006: 15.1 certified PCI Compliant
Jan 2007: VISA approves certification
May 2007: Official 16.0 PCI Release
Dec 2007: 16.0 certified PCI Compliant
Awaiting VISA certification approval
![Page 3: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/3.jpg)
Terms and Definitions PCI DSS: Payment Card Industry Data
Security Standard PABP: Payment Application Best
Practices RM is a validated payment application
that meets the PCI PABP So what is “PCI Compliance”? Hint: It’s
not simply installing RM 15.1.
![Page 4: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/4.jpg)
The PCI Compliant SiteTo be a fully PCI compliant site, there are 4 areas needing
attention: Use PABP validated applications
Install RM 15.1 or later Proper configuration
RM and Reseller PCI Guidance Doc Proper procedures
Server machine access Remote access
Site guidelines Physical machine access Network / Wireless
![Page 8: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/8.jpg)
Network w/ web svcsInternet
SymbolWS2000
DMZfor
Online OrderingRmbrowser
Write-On PhoneCentral Manager
![Page 9: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/9.jpg)
What’s a DMZ? DMZ: “De-Militarized Zone” Separate network isolated from RM
network DMZ exposed to internet RM network isolated from internet All enforced through firewall
configuration rules
![Page 10: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/10.jpg)
Network with DMZInternet
DMZ10.1.1.*
RM10.1.0.*
10.1.1.1
10.1.0.1
10.1.1.254
10.1.0.254
![Page 11: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/11.jpg)
Setting up DMZ Server RM and Reseller PCI Guidance:
Install NetworkActiv AUTAPF port forwarder as a service
Configure single port forwarding rule Configure OO/RMbrowser/WO Phone
setup to go to DMZ machine and port
![Page 12: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/12.jpg)
Firewall RulesInternet
DMZ10.1.1.*
RM10.1.0.*
Limited to proxy
![Page 13: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/13.jpg)
Setting up the Firewall Symbol WS2000 configuration
Two subnets 1 for RM 1 for DMZ
Firewall Rules Now we’ll show you how…
![Page 14: PCI Compliance Technical Overview 2008](https://reader036.vdocuments.mx/reader036/viewer/2022062807/5681501f550346895dbe0534/html5/thumbnails/14.jpg)
Questions?