Render PAN unreadable anywhere it is stored (including on portable digital media, backup media, and in logs).” That is how PCI1 3.4 is defined and for NonStop users that has proven to be a difficult task to comply with. Most users have resorted to compensating controls to satisfy auditor requirements. The article entitled ‘Tokenization - A New Approach to Fully Comply with PCI 3.4 and Improve Data Security’, written by Thomas Burg, CTO, and Michael Stephenson, Senior Software Engineer at comForte, looks at Tokenization, a new approach to fulfill the PCI 3.4 requirement and improve data security. It discusses the rationale behind not allowing sensitive data to be stored “in the clear”; then presents tokenization as a fresh approach which goes beyond only encrypting the data. Finally it shows how Tokenization can be added to existing applications without requiring any changes to the application itself. To read the full article please click here.