PCI Data Security Standard
Implementation
How Check Point helps you comply with PCI
As shown in the following table, Check Point solutions allow organizations to comply with a majority of the Payment Card Industry (PCI) Data Security Standard (DSS), in particular with those that are technical in nature. Check Point partners with many best-in-class providers to extend capabilities and coverage into the few areas not covered by core Check Point products - for example, process-related requirements. With Check Point as your foundation for PCI compliance, you are also immediately satisfying many requirements found in other security regulations. Check Point, together with OPSEC partners, provides customers with comprehensive, integrated security solutions, allowing you to build a strong base from which to build and grow.
| PCI Requirements |
Check Point Compliance Solutions |
More Information |
|---|---|---|
| Build and Maintain a Secure Network | ||
| 1. Install and maintain a firewall configuration to protect cardholder data | As the industry's number one stateful firewall solution, Check Point's VPN-1 supports all PCI firewall requirements. | PCI Section 1 |
| 2. Do not use vendor-supplied defaults for system passwords and other | Many Check Point solutions support and encourage customers to change supplied defaults before full installation. | PCI Section 2 |
| Protect Cardholder Data | ||
| 3. Protect stored cardholder data | Check Point Full Disk Encryption addresses PCI data storage, local encryption, and key management requirements. | PCI Section 3 |
| 4. Encrypt transmission of cardholder across open, public networks | Check Point's remote access solutions, VPN-1 and Connectra, provide strong encryption for data during transmission over open networks using standards-based encryption protocols. | PCI Section 4 |
| Maintain a Vulnerability Management Program | ||
| 5. Use and regularly update antivirus software or programs | Check Point Endpoint Security products provide the antivirus defenses needed to stop rapidly spreading attacks. The VPN-1 family provides integrated gateway-based antivirus within its VPN-1 UTM, UTM-1 Edge, and VPN-1 UTM Power solutions. | PCI Section 5 |
| 6. Develop and maintain secure systems and applications | Check Point Endpoint Security, SMART management system, and SmartDefense Services enable administrators to update and maintain security at all time. | PCI Section 6 |
| Implement Strong Access Control Measures | ||
| 7. Restrict access to data by business need-to-know | Check Point's perimeter, internal, Web, and endpoint solutions allow for the creation of granular access and authorization rules. | PCI Section 7 |
| 8. Assign a unique ID to each person with computer access | Authentication is an essential part of all Check Point solutions, including Check Point VPN solutions, as well as user authentication for VPN-1. | PCI Section 8 |
| 9. Restrict physical access to cardholder data | Check Point VARs, SIs, and business partners can provide consulting services to help implement the processes, best practices, and systems required by section 9. | PCI Section 9 |
| Regularly Monitor and Test Networks | ||
| 10. Track and monitor all access to network resources and cardholder data | Check Point management tools can log and report user access across Check Point and 3rd party gateways as well as log and report administrator changes on Check Point systems. | PCI Section 10 |
| 11. Regularly test security systems and processes | Check Point VARs, SIs, and business partners can provide consulting services to help provide the testing and scanning that can verify the proper deployment of Check Point solutions as required by sections 11.1-11.3. | PCI Section 11 |
| Maintain an Information Security Policy | ||
| 12. Maintain a policy that addresses information security | Check Point VARs, SIs, and business partners can provide consulting services to help develop and implement the processes and procedures required as part of section 12. | PCI Section 12 |
More About PCI: