Comments on: PCI DSS Requirement 4.1: Protecting Cardholder Data with SSL and TLS

By: SgtShultz

SgtShultz — Thu, 10 Jun 2010 16:46:24 +0000

My understanding of MPLS is that PCI still considers this a private network. However I have been told that this may change in v1.3!

By: Joaquim

Joaquim — Wed, 26 Aug 2009 09:37:29 +0000

As per PCIDSS standards, do MPLS and Lease Lines come into the “OPEN” network?

By: admin

admin — Sat, 10 Jan 2009 22:45:05 +0000

I’ve never worked with a merchant using GPRS APNs, but I believe it would still meet the definition of a public network. You’re transmitting data over the air, so it needs to be encrypted.

By: Andrew

Andrew — Fri, 03 Oct 2008 09:19:13 +0000

Hi,
i have some doubts about this sentence:
“Examples of open, public networks that are in scope of the PCI DSS (…) and general packet radio service (GPRS)”

What if we use our GPRS APN to send data, so nobody else can connect to this APN. It’s still public network?