Lightboard Lessons: Secure Data Tokenization
Companies that are subject to security audits, such as PCI DSS, could benefit from a solution that takes sensitive information and moves it from their web servers to the enterprise edge or ingress po...
Published Aug 03, 2016
Version 1.0
@Fulmetal, great question! In this scenario, a company that processes sensitive data (credit card numbers, personal information, etc) would need to ensure that all their web servers are compliant with all the PCI/DSS requirements. That can be a daunting task. Because of the nature of what these companies do (banks, online marketplaces, etc), they have a valid business requirement to ensure their users can post this sensitive data. The solution outlined here allows these same companies the ability to move all the PCI/DSS compliance off their web servers and onto the BIG-IP. This significantly streamlines all the compliance requirements they have to do.