Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase ««12

How to hide sensitive data in SQL 2000 table Expand / Collapse
Author
Message
Posted Sunday, October 20, 2013 10:53 AM


SSC-Dedicated

SSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-Dedicated

Group: General Forum Members
Last Login: Today @ 8:40 AM
Points: 35,265, Visits: 31,754
homebrew01 (10/20/2013)
We were allowed to store CC numbers, but had to have various safeguards in place to be PCI compliant.


When you say you "were allowed to store CC numbers", do you mean in clear text? Also, what were those "various safeguards"?


--Jeff Moden
"RBAR is pronounced "ree-bar" and is a "Modenism" for "Row-By-Agonizing-Row".

First step towards the paradigm shift of writing Set Based code:
Stop thinking about what you want to do to a row... think, instead, of what you want to do to a column."

(play on words) "Just because you CAN do something in T-SQL, doesn't mean you SHOULDN'T." --22 Aug 2013

Helpful Links:
How to post code problems
How to post performance problems
Post #1506484
Posted Sunday, October 20, 2013 12:26 PM


SSCrazy

SSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazy

Group: General Forum Members
Last Login: Saturday, September 27, 2014 8:08 AM
Points: 2,827, Visits: 8,480
Definately NOT clear text. The numbers were encrypted, and the database with the encryption key was in a separate database that was on an encrypted drive with only admin permissions. And all the other safegaurds imposed by PCI over the whole IT infrastructure.


Post #1506494
« Prev Topic | Next Topic »

Add to briefcase ««12

Permissions Expand / Collapse