Encryption for PCI Compliance


In December 2004, several credit card companies (American Express, Discover, Japan Credit Bureau, MasterCard and Visa) — members of the Payment Card Industry Security Standards Council—released the Payment Card Industry Data Security Standard or PCI-DSS.
The PCI-DSS defines regulations to meet six Control Objectives:
  • Build and Maintain a Secure Network
  • Protect Cardholder Data
  • Maintain a Vulnerability Management Program
  • Implement Strong Access Control Measures
  • Regularly Monitor and Test Networks
  • Maintain an Information Security Policy.

DigiCert Certificates Offer End-to-End Solutions

DigiCert Certificates Offer End-to-End Solutions DigiCert offers Extended Validation (EV) certificates that provide a greater degree of online confidence.
EV Certificates provide additional trust by consumers and cardholders because they activate a green address bar in web browsers whenever an SSL session is established with a merchant’s or issuing bank’s EV-validated site. Beyond the initial customer experience, encryption on back-end systems is equally important, as illustrated in Figure 1. As cardholder data is sent through payment gateways and credit card interchanges and between acquiring and issuing banks, encryption protects it in case it is intercepted.
DigiCert’s certificates facilitate encrypted communications among servers and devices with internal and external IP addresses and private names. DigiCert’s SSL/TLS certificates include both server and client authentication in the enhanced key usage extension, which means the payment processing network can be configured with certificates to encrypt data transmitted along all points in the processing cycle—see Figure 1.
Encryption for PCI Compliance


Failure to encrypt credit card data can result in fines and civil damages in the millions of dollars. PCI and applicable laws require the encryption of cardholder data through the use of SSL/TLS certificates. Such certificates must be issued by a trusted provider. DigiCert is such a trusted provider because its root certificates are embedded as trust anchors in browser software published by Microsoft, Mozilla, Apple, and other browser vendors.
Certificates issued by DigiCert facilitate the encryption of cardholder data during network transmission. DigiCert offers a variety of SSL certificate solutions for the encryption of credit card transmissions including single server / single client, Wildcard, Unified Communications (multiple subject alternative names or SANs), IP- address only and EV certificates. DigiCert also offers 24x7 support for these payment card encryption solutions.
Certificates that features PCI Compliance
DigiCert Secure Site Pro SSL
DigiCert Secure Site Pro EV SSL
We Appreciate Your Feedback.
It only takes 30 Seconds
We are Social