Collaborate Disseminate
A brief schema of a TLS intercepting proxy – the Client connects to the Host via the Proxy in a way which allows the Proxy to perform a (consensual) MITM.
[Client] -> [Proxy] -> [Host]
It’s my understanding reading references on… Continue reading Does TLS interception necessarily require a self-signed certificate? Please explain why
Is it possible to use any remote DVCS (GitHub, Bitbucket, etc.) with PCI DSS or should I host Git on my own server?
The repo obviously doesn’t store any sensitive CHD information and I do have my own self-hosted git repo inside the PCI DSS… Continue reading Can I use GitHub and be PCI DSS 4.0 compliant?
Basically, when we execute a generate key command such as A0 then we receive a key-under-lmk for future use. What if we have multiple HSMs in a high availability configuration? How would we make sure that all keys-under-LMK mean the same t… Continue reading Is it possible to sync up LMKs in two Thales PayShield 9000 instances>
I am designing a workflow for issuing and acquiring of voucher cards for a client and the chosen technology for the cards has been mifare desfire.
I have a lot of experience with credit cards and we want to make the technolo… Continue reading Securing authenticity of mifare cards, protection against cloning
Basically, the Revolut app shows the PAN and CVV by default in-app and it has a “show PIN” option, how can this be compliant?
Here’s a screenshot from the app, I have seen the real app and it really renders PAN, CVV and PIN…. Continue reading Can Revolut be PCI DSS compliant?