Link to home
Start Free TrialLog in
Avatar of sunhux
sunhux

asked on

Mask & unmask data in journal

We have custom Windows equipment that generates journals that unfortunately
contains credit card numbers (which PCI-DSS would not allow) but our business
people needs these info.

At Windows OS level, is there any free tools or ways to mask these card info in
the journal (treat these journal files as 'locked' just like event viewer logs) &
when the  authorized needs it, it will be 'unmasked' to them.

Any other solutions are most welcome
Avatar of sunhux
sunhux

ASKER

Correction:
>when the  authorized needs it, it will be 'unmasked' to them.
when the  authorized staff needs it, it will be 'unmasked' to him/her.
SOLUTION
Avatar of Gary Patterson, CISSP
Gary Patterson, CISSP
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of sunhux

ASKER

Yes, it's a PCI-DSS compliance related : think
ATM card# is out of PCI-DSS scope but
PAN & credit card#  is in scope & is a concern.

Wow, not any masking algorithm is acceptable:
guess need to encrypt & encryption password
known to authorized staff only?
ASKER CERTIFIED SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial