Pci Compliance Audit

Liaison Protect Successfully Completes PA-DSS Audit

ATLANTA--( BUSINESS WIRE )-- Liaison Technologies (formerly nuBridges, Inc.), a global provider of cloud-based integration, data management and data security services and solutions, announced today that its Liaison Protect™ Format Preserving Tokenization™ and key management solutions have successfully passed a Payment Application Data Security Standard (PA-DSS) audit, underscoring Liaison’s continuing leadership in data security. The Liaison products are among the few non-payment application tokenization solutions to go through a PA-DSS audit to prove their high level of security.

Liaison engaged Verizon Business to conduct the PA-DSS assessment. Verizon completed all PA-DSS validations and determined that Liaison Protect Token Manager and Liaison Protect Key Manager have achieved full validation with the Payment Application Data Security Standard. However, because the solution does not specifically “facilitate the authorization or settlement” of credit cards, Liaison Protect is not PA-DSS eligible.

“Liaison Protect is an integral component of many organizations’ PCI-DSS compliant data security strategies and is responsible for protecting billions of credit cards from the point of sale through to storage in databases, files, applications and other back-end systems,” said Bruce Chen, Liaison’s chief technical officer. “We asked Verizon Business to conduct a PA-DSS audit on Liaison Protect to prove its high level of security, knowing that it would not be eligible for PA-DSS certification under the current requirements. Putting our tokenization and key management solutions through this rigorous test provides our customers with an extra level of assurance and further underscores our commitment to innovation and R&D for our security solutions.”

Liaison Protect is the industry’s first data security software solution to combine Format Preserving Tokenization™ with strong local encryption, centralized encryption key management and logging in one platform-agnostic package. Liaison Protect is designed for organizations that need to protect payment card numbers as well as volumes of Personally Identifiable Information (PII) and Electronic Health Records (EHR) from theft and accidental loss, while reducing complexity and simplifying compliance management for data security standards and privacy laws.

Verizon's on-demand CaaS service passes PCI compliance audit ...

Verizon's ( NYSE: VZ ) growing cloud service portfolio cleared another important, but necessary hurdle in completing a Payment Card Industry Data Security Standard audit.

Last year, Verizon's Computing as a Service (CaaS) offering, which is delivered via its cloud centers in the U.S. and Europe, completed a Payment Card Industry Data Security Standard (PCI DSS) audit for storing, processing and transmitting credit card information.

Getting this certification was not exactly easy in that the CaaS' physical and virtual network infrastructure had to undergo a third-party examination of policies, procedures and technical systems, as well as an on-site assessment and systemwide vulnerability scan. Similar to its recent completion of SAS 70 Type II examination , achieving Payment Card Industry Data Security Standard compliance reflects Verizon's move to ensure that the cloud not only provides greater convenience, but that applications won't be compromised by a growing raft of security threats under a well known payment-card security standard.

PCI system architecture

The quality audit, a management evaluation tool

Audit planning, a risk-based approach

Building a world-class compliance program, best practices and strategies for success

The clinical audit handbook, improving the quality of health care