PCI-DSS Compliance with JSCAPE MFT Server

Discusses how JSCAPE MFT Server when properly configured can meet PCI-DSS compliance requirements.
  1. Blog

The PCI Data Security Standard (PCI-DSS) is the security standard for security management, policies, procedures, network architecture, software design and other critical protective measures for the payment process industry - including merchants, payment devices and services vendors, processors and financial institutions.

JSCAPE MFT Server when used properly can help you to achieve PCI-DSS compliance. The PCI-DSS requirements that are addressed by JSCAPE MFT Server have been identified in the table below.

Requirement Solution
Install and maintain a firewall configuration to protect cardholder data JSCAPE MFT Server has built-in IP Access feature that allows you to define the networks from which clients may connect.
Do not use vendor-supplied defaults for system passwords and other security parameters JSCAPE MFT Server disables anonymous access by default and has no default system passwords.
Protect stored cardholder data JSCAPE MFT Server may easily be configured to PGP encrypt data that is stored on the server. This data cannot be decrypted without the proper PGP private key and password. This further protects data in the event the server were compromised or stolen.
Encrypt transmission of cardholder data across open, public networks JSCAPE MFT Server supports various secure file transfer protocols including FTPS (FTP over SSL), HTTPS, SFTP (FTP over SSH) and SCP (Secure Copy) in order to encrypt data as it is sent over the network. Server and accounts may be optionally configured to accept only secure encrypted sessions.
Assign a unique ID to each person with computer access JSCAPE MFT server may easily be configured to authenticate users against central user repositories such as LDAP, Active Directory and JDBC relational databases. Authenticated users are granted access only to the files and directories assigned.
Track and monitor all access to network resources and cardholder data JSCAPE MFT Server may automatically disable accounts or block IP addresses of clients that attempt to authenticate unsuccessfully too many times within a defined period. Should an account or IP be blocked, JSCAPE MFT Server may capture these events and notify system administrators via email. All server activity is automatically logged for audit and reporting purposes. JSCAPE MFT Server includes a reporting module that may be used to quickly generate reports on all server activity.


References

JSCAPE MFT Server