Escape From PCI Land

Engineering

rahul-dani
of 9
Description
Text
PowerPoint Presentation Escape From PCI Land Rahul Dani Growth Product Engineering 1 The PCI Redemption PCI 2 Growth Product Engineering Charter Drive Signup Middle tier service Flow control, user state management, pre-signup session management via restful APIs Orchestrate data from backend services payments, subscriber, account, billing etc. 3 Edge Service M1 Payments App Mn Browser/Device Company Infrastructure Billing App Browser/Device Browser/Device Sensitive data Sensitive data Billing App Billing App Payments App Payments App Sensitive data Sensitive data Mn Mn M1 GP Services Edge Service Edge Service In Scope Only Middle Tier App in PCI Scope In Scope Billing/Payments has to be in scope. GPE had to be in scope because we were talking to clients directly. 4 Edge Service M1 Payments App Mn Browser/Device Company Infrastructure Billing App Browser/Device Browser/Device Sensitive data Sensitive data Billing App Billing App Payments App Payments App Sensitive data Sensitive data Mn Mn M1 GP Services Edge Service Edge Service In Scope GP Services No Longer in Scope In Scope Billing/Payments has to be in scope. GPE had to be in scope because we were talking to clients directly. 5 Browser/Device 2 2 3 Out of scope In Scope Encryption key Public Key Distro 1 3 Out of band interaction with CDN Interaction with Netflix Plaintext Ciphertext System Architecture Client side encryption using public key Overflow slide 6 Surprises happen Actual Effort >> Initial Estimation Effort Estimated Actual 7 Why did moving out of PCI take so long 8 Questions ? 9
Comments
Top