Is TIBCO EMS PCI DSS compliant?
Article ID: KB0085494
Updated On:
| Products | Versions |
|---|---|
| TIBCO Enterprise Message Service | - |
| Not Applicable | - |
Description
Resolution:
The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards.
Currently EMS is not PCI DSS compliance. We do not support message body encryption through a JDBC connection using SSL. For the requirement on Data-at-Rest Encryption for PCI DSS compliance, the easiest solution is to have an Encrypting Database (Oracle, e.g.), with the JDBC connection using SSL.
We have an ER EMS-3168 for requesting to have an ability to encrypt EMS message body through JDBC connection using SSL,
The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards.
Currently EMS is not PCI DSS compliance. We do not support message body encryption through a JDBC connection using SSL. For the requirement on Data-at-Rest Encryption for PCI DSS compliance, the easiest solution is to have an Encrypting Database (Oracle, e.g.), with the JDBC connection using SSL.
We have an ER EMS-3168 for requesting to have an ability to encrypt EMS message body through JDBC connection using SSL,
Issue/Introduction
Is TIBCO EMS PCI DSS compliant?
Additional Information
http://en.wikipedia.org/wiki/Payment_Card_Industry_Data_Security_Standard
Feedback
Yes
No
Powered by
