1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Tokenization would not have prevented most retail breaches

Discussion in 'CSO' started by RSS, Apr 9, 2015.

  1. RSS

    RSS New Member Member

    Tokenization, where credit card numbers and other sensitive data is replaced by random characters, can be a secure alternative to encryption in many cases -- but would not have helped in the majority of retail breaches over the past two years.

    The Payment Card Industry released guidance last week about how technology vendors and retailers can use tokenization to reduce the amount of card data they store in their systems.

    “Tokenization is one way organizations can limit the locations of cardholder data," said PCI SSC Chief Technology Officer Troy Leach. in a statement. "A smaller subset of systems to protect should improve the focus and overall security of those systems, and better security will lead to simpler compliance efforts."

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page