Assuring PCI-DSS Compliance With Real-Time Database Security and Monitoring
The Payment Card Information Data Security Standard (PCI-DSS) was created in 2004 by the leading credit companies in response to the growing problem of cardholder information theft. Despite heavy fines for violations and other costs incurred by retailers, security problems have continued. Recent high-profile data thefts have increased concerns about the problem, and generated a strong interest in solving it. Complying with the PCI standard regarding the security of customer databases has been difficult, however. Database encryption, the most obvious solution, is complex, costly and can take years to retrofit into legacy applications.