Mainframe Blog

PCI Regulations - Taking Credit Card Payments | Broadcom Mainframe Software

Written by Ed Blazejewski | Apr 29, 2024 6:54:57 PM

Act now to avoid business disruption on March 31, 2025.

Do you store credit or debit card data in Broadcom’s Output Management View solution? The next Payment Card Industry regulations mandate (PCI DSS 4.0) will take effect in slightly over one year. If you currently hold entitlement to CA 1, you already have the solution to protect your business. To fully meet this PCI mandate, you will need to ensure you encrypt your data on storage devices. Broadcom now provides integration between View and CA 1™ Flexible Storage™ so that you can encrypt and compress your data.

If you need CA 1 Flexible Storage, simply contact our team. To learn more about View, this PCI Mandate, and how the integration works, contact our View expert.



 

Maximize Security and Compliance for Payment Card Regulations

You can now leverage CA 1 Flexible Storage and View/Deliver for the upcoming PCI DSS v4.0 regulation in 2025. In today's digital landscape, safeguarding sensitive data is non-negotiable, especially for organizations handling payment card information. With the impending transition from PCI DSS v3.2.1 to v4.0, stringent new requirements demand proactive measures to ensure compliance. For output management customers who use Broadcom’s View/Deliver solutions, aligning with these standards necessitates strategic utilization of encryption and storage solutions

Understanding PCI DSS v4.0 Requirements

The transition to PCI DSS v4.0 introduces 60 new requirements, notably focusing on data encryption and key management. Compliance entails rendering PAN data unreadable (3.5.1.2) and maintaining an inventory of trusted keys and certificates (4.2.1.1). To meet these specifications, organizations must fortify their data management and storage practices.

Leveraging Broadcom’s Mainframe View/Deliver Output Management Solution for Compliance

Data is the lifeblood of every organization. For regulated industries like banking, insurance, and healthcare, few things are more crucial than meeting compliance with standards like HIPAA, PCI DSS, and SOX. Non-compliance can lead to steep penalties, damaged reputation, and loss of customer trust. Mainframe environments contain terabytes of sensitive data subject to these numerous regulations.

Broadcom ensures that you’re covered with View/Deliver capabilities that help enterprises meet compliance mandates around documents and reporting. By collecting, distributing, securing, monitoring, and managing the lifecycle of mainframe output residing on disk and tape, organizations can avoid compliance pitfalls.

Leveraging CA 1 Flexible Storage for Cold Storage and Archiving

Broadcom's CA 1 Flexible Storage solution offers a robust solution for encrypting tape archive data, seamlessly integrating with IBM Z Enterprise Data Encryption (zEDC). This synergy not only addresses PCI DSS v4.0 mandates but also enhances data security and accessibility. CA 1 Flexible Storage facilitates AES-256 encryption of archived data, whether stored on commodity storage, private, or public clouds.

Key Requirements for Meeting the Regulations

Clients leveraging View/Deliver must take proactive steps to align with PCI DSS v4.0. Migrating to CA 1 Flexible Storage from existing solutions like TLMS, RMM, or Control-T is imperative for encryption support. Furthermore, organizations using encryption or compression within View/Deliver must transition this data to tapes managed by CA 1 Flexible Storage. While this transition may require some effort, it's essential for achieving compliance and fortifying data security measures. Using the combination of CA 1 Flexible Storage’s data encryption services and View/Deliver prepares you with an easy-to-implement solution.

Enhancing View/Deliver with Encryption Capabilities

The integration of these two solutions provides:

  • Seamless compression and encryption: View can now directly compress and encrypt reports on the fly prior to writing them to tape managed by CA 1 Flexible Storage. This eliminates the need for separate encryption steps, streamlining your workflow and saving time and storage space.
  • Granular control: You can now define independent encryption and compression levels down to the data set (file) level.
  • Potential performance boosts: Leveraging the zIIP assist processor for encryption and compression, workloads can improve performance and reduce tape usage. Offloading these CPU-intensive tasks to the zIIP engine frees up general compute capacity, enabling faster processing times. This optimized approach takes full advantage of the System z environment to simultaneously encrypt and compress data while minimizing resource consumption.

Key Management and Encryption Best Practices

Ensuring the integrity of encryption keys is paramount to maintaining robust security measures. With ICSF secure keys, organizations benefit from a layered approach to encryption, safeguarding sensitive data against unauthorized access. Separating encryption keys from the data itself mitigates the risk of breaches, providing an additional layer of protection against potential threats.

In the face of evolving regulatory mandates, organizations must prioritize data security and compliance. By leveraging CA 1 Flexible Storage compression and encryption alongside View/Deliver output management capabilities, organizations can fortify their infrastructure against emerging threats while seamlessly aligning with PCI DSS v4.0 requirements. Embracing these solutions ensures compliance and fosters a culture of proactive data protection and risk mitigation in today's dynamic digital landscape.

 

Learn More: