Forum Discussion

Nimbostratus

Jul 11, 2025

PCI Compliance and ASM

Hi, We are building a system that is to be PCI complient. The system will be hosted in segregated zone in the infrastructure... where we have: Load balancer to receive the external traffic We...

application delivery

security

VGF5

Cumulonimbus

Jul 11, 2025

F5 WAF’s “Data Guard” prevents sensitive data (e.g., credit card numbers, SSNs) from logging or leaking in responses. It masks or blocks CHD in HTTP responses and logs, meeting PCI DSS requirements for plaintext CHD exposure. Use SSL bridging to prevent plaintext CHD exposure on the network.

Reference:

K34154012: Configuring Data Guard detection patterns (12.x - 17.x)

K8363: Using the Mask Data setting to protect sensitive data returned by the BIG-IP ASM

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

PCI Compliance and ASM

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

Decoding PCI-DSS v4.0: F5's Ridiculously Easy Guide to Technical Compliance

BIG-IP security hardening and compliance checks

Lightboard Lessons: PCI/DSS compliance with BIG-IP

Meeting the Federal Quantum Challenge: How F5 Enables Compliance with New Government Mandates

Making WAF Simple: Introducing the OWASP Compliance Dashboard

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS