asked on
Is PCI DSS compliance applicable to site to site VPN
I'm looking for a PCI DSS compliance doc that specifies what are the scope & areas the compliance covers.
Is PCI DSS compliance applicable to site to site VPN? If so, did it say it must use SHA2 & not SHA1 by a certain date?
If we can't get SHA2 working, is there a workaround?
Is PCI DSS compliance applicable to site to site VPN? If so, did it say it must use SHA2 & not SHA1 by a certain date?
If we can't get SHA2 working, is there a workaround?
EncryptionNetwork SecuritySecurityVPNNetwork Architecture
Last Comment
btan
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Typo correction, should read:
But the 2 sites' vpn endpoints are created between Checkpoint n Watchguard ...
But the 2 sites' vpn endpoints are created between Checkpoint n Watchguard ...
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
If our site to site vpn currently uses self-signed certs (not a cert from a CA), does it hv any bearing on SHA1 being deprecated? Or as long as we use an MS product (eg Outlook or IE) at both sites, we will be affected? But the 2 sites' vpn are Checkpoint n Watchguard which dont deprecate SHA1? Hope I am not saying no-sense
Secondly as site to site vpn is for encryption n protection against MITMA, does collision attacks weaken the encryption or the mitigation against MITMA?