Forum Discussion

Nimbostratus

Jul 11, 2025

PCI Compliance and ASM

Hi, We are building a system that is to be PCI complient. The system will be hosted in segregated zone in the infrastructure... where we have: Load balancer to receive the external traffic We...

application delivery

security

VishnuGatla

Cumulonimbus

Jul 11, 2025

F5 WAF’s “Data Guard” prevents sensitive data (e.g., credit card numbers, SSNs) from logging or leaking in responses. It masks or blocks CHD in HTTP responses and logs, meeting PCI DSS requirements for plaintext CHD exposure. Use SSL bridging to prevent plaintext CHD exposure on the network.

Reference:

K34154012: Configuring Data Guard detection patterns (12.x - 17.x)

K8363: Using the Mask Data setting to protect sensitive data returned by the BIG-IP ASM

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)