{"id":34132,"date":"2017-11-28T08:00:00","date_gmt":"2017-11-28T14:00:00","guid":{"rendered":"http:\/\/blog.cpanel.com\/?p=34132"},"modified":"2017-11-28T08:00:00","modified_gmt":"2017-11-28T14:00:00","slug":"whats-pci-and-why-does-it-matter","status":"publish","type":"post","link":"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/","title":{"rendered":"What goes into protecting your credit card information on the web?"},"content":{"rendered":"<p><em>*\u00a0 This post was originally posted on November 28, 2014, and has been updated for accuracy.\u00a0<\/em><\/p>\n<p>Purchases happen with the click of a button, a swipe of a finger, or simply, no human interaction at all. Whether it\u2019s our monthly subscription to Netflix, the plane tickets that just went on flash sale, or the book that we purchased with Prime shipping, our request for immediacy and automation has placed our credit card information all over the web. Though scary in context, the Payment Card Industry Security Standards Council has developed a set of data security standards that merchants storing credit card information on servers need to abide by. Luckily, for hosting providers using cPanel servers, we\u2019ve already loaded you with the equipment to better ensure your information is secure, your customer\u2019s information is protected, and your customer\u2019s customers have secure transactions on the web.<\/p>\n<p><strong>What is PCI Compliance?<\/strong><br \/>\nEstablished by the major credit card providers, Visa, MasterCard, Discover, and JCB International, the Payment Card Industry Security Standards Council was launched as an independent body in 2006 to focus and advise on the rapidly evolving landscape of the payment transaction process. What resulted was an organic set of criteria, with twelve major tenets, called the Payment Card Industry Data Security Standards (PCI DSS).<\/p>\n<p><strong>The Big 12<\/strong><\/p>\n<ol>\n<li><strong>Install\/Maintain firewall configuration that will protect cardholder data<\/strong><\/li>\n<li><strong>Do not use vendor-supplied defaults for system passwords or any other security parameter<\/strong>\n<ul>\n<li><em>Many switches\/routers (i.e. wireless)\/applications have a default admin account, that uses a default password. Remove them if possible, or at least change the password to something very complex<\/em><\/li>\n<\/ul>\n<\/li>\n<li><strong>Protect stored cardholder data<\/strong>\n<ul>\n<li><em>Disable direct root logins. A simple configuration file that is in a publicly accessible directory can still cause issues, even if the permissions on the directory forbid direct access. Storing the data in a database is an added level of security, especially if encrypted and hashed.<\/em><\/li>\n<\/ul>\n<\/li>\n<li><strong>Encrypt transmission of cardholder data across open, public networks<\/strong>\n<ul>\n<li><em>Keep the cardholder data being sent across networks to a minimum and encrypt with the highest possible strength<\/em><\/li>\n<\/ul>\n<\/li>\n<li><strong>Use and regularly update antivirus software<\/strong>\n<ul>\n<li><em>The antivirus database needs to be up-to-date to ensure any threats created\/surfaced after last manual update can be caught.<\/em><\/li>\n<\/ul>\n<\/li>\n<li><strong>Develop\/Maintain secure systems and applications<\/strong><\/li>\n<li><strong style=\"line-height: 1.5;\">Restrict access to cardholder data<\/strong>\n<ul>\n<li><em>Machines holding card info should be available on the private network only and a two-factor authentication or higher security level should be required for access.<\/em><\/li>\n<\/ul>\n<\/li>\n<li><strong>Assign a unique ID to each person with computer access<\/strong><\/li>\n<li><strong style=\"line-height: 1.5;\">Restrict physical access to cardholder data<\/strong><\/li>\n<li><strong style=\"line-height: 1.5;\">Track\/Monitor all access to network resources and cardholder data<\/strong>\n<ul>\n<li><em>Audit access logs frequently.<\/em><\/li>\n<\/ul>\n<\/li>\n<li><strong>Regularly test security systems and processes<\/strong><\/li>\n<li><strong style=\"line-height: 1.5;\">Maintain a policy that addresses information security<\/strong>\n<ul>\n<li><em style=\"line-height: 1.5;\">Create a system of internal policies to ensure the proper, regimented handled of secured information.<\/em><\/li>\n<\/ul>\n<\/li>\n<\/ol>\n<p>While cPanel isn\u2019t PCI compliant right out of the box, turning on SSL Cipher along with a few other features, and keeping your software up to date should have you ready to accept and administer transaction on your cPanel server.<\/p>\n<p><em>To find out more about PCI, <a href=\"http:\/\/go.cpanel.net\/cpconf15_pci\">check out these slides<\/a>\u00a0from the cPanel Conference Session PCI Talk, or contact session author <a href=\"mailto:ryan.sherer@cpanel.net\">Ryan Sherer<\/a> for more info.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>*\u00a0 This post was originally posted on November 28, 2014, and has been updated for accuracy.\u00a0 Purchases happen with the click of a button, a swipe of a finger, or simply, no human interaction at all. Whether it\u2019s our monthly subscription to Netflix, the plane tickets that just went on flash sale, or the book [&hellip;]<\/p>\n","protected":false},"author":77,"featured_media":64401,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[61],"tags":[1769,1773,1777,1781,1785,1789,1793,1797,1801,1805],"class_list":["post-34132","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tips-and-tricks","tag-discover","tag-dss","tag-e-commerce","tag-jcb","tag-mastercard","tag-payment-card-industry-data-security-standards","tag-pci","tag-pci-dss","tag-security","tag-visa"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v21.6 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>What goes into protecting your credit card information on the web? | cPanel<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What goes into protecting your credit card information on the web? | cPanel\" \/>\n<meta property=\"og:description\" content=\"*\u00a0 This post was originally posted on November 28, 2014, and has been updated for accuracy.\u00a0 Purchases happen with the click of a button, a swipe of a finger, or simply, no human interaction at all. Whether it\u2019s our monthly subscription to Netflix, the plane tickets that just went on flash sale, or the book [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/\" \/>\n<meta property=\"og:site_name\" content=\"cPanel\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/cpanel\/\" \/>\n<meta property=\"article:published_time\" content=\"2017-11-28T14:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/devel.www.cpanel.net\/wp-content\/uploads\/2015\/09\/PCI-Image.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"680\" \/>\n\t<meta property=\"og:image:height\" content=\"324\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"cPanel Community\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@cPanel\" \/>\n<meta name=\"twitter:site\" content=\"@cPanel\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"cPanel Community\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/\",\"url\":\"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/\",\"name\":\"What goes into protecting your credit card information on the web? | cPanel\",\"isPartOf\":{\"@id\":\"https:\/\/devel.www.cpanel.net\/#website\"},\"datePublished\":\"2017-11-28T14:00:00+00:00\",\"dateModified\":\"2017-11-28T14:00:00+00:00\",\"author\":{\"@id\":\"https:\/\/devel.www.cpanel.net\/#\/schema\/person\/8cf97408aad4fb70cf55d11a1d4f57f8\"},\"breadcrumb\":{\"@id\":\"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/devel.www.cpanel.net\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What goes into protecting your credit card information on the web?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/devel.www.cpanel.net\/#website\",\"url\":\"https:\/\/devel.www.cpanel.net\/\",\"name\":\"cPanel\",\"description\":\"Hosting Platform of Choices\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/devel.www.cpanel.net\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/devel.www.cpanel.net\/#\/schema\/person\/8cf97408aad4fb70cf55d11a1d4f57f8\",\"name\":\"cPanel Community\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/devel.www.cpanel.net\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/e1949945083b5526bb95711bd3d616b3?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/e1949945083b5526bb95711bd3d616b3?s=96&d=mm&r=g\",\"caption\":\"cPanel Community\"},\"description\":\"The web hosting industry's most reliable management solution since 1997. With our first-class support and rich feature set, it's easy to see why our customers and partners make cPanel &amp; WHM their hosting platform of choice. For more information, visit cPanel.net.\",\"sameAs\":[\"https:\/\/cpanel.net\"],\"url\":\"https:\/\/devel.www.cpanel.net\/blog\/author\/cpadmin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What goes into protecting your credit card information on the web? | cPanel","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/","og_locale":"en_US","og_type":"article","og_title":"What goes into protecting your credit card information on the web? | cPanel","og_description":"*\u00a0 This post was originally posted on November 28, 2014, and has been updated for accuracy.\u00a0 Purchases happen with the click of a button, a swipe of a finger, or simply, no human interaction at all. Whether it\u2019s our monthly subscription to Netflix, the plane tickets that just went on flash sale, or the book [&hellip;]","og_url":"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/","og_site_name":"cPanel","article_publisher":"https:\/\/www.facebook.com\/cpanel\/","article_published_time":"2017-11-28T14:00:00+00:00","og_image":[{"width":680,"height":324,"url":"https:\/\/devel.www.cpanel.net\/wp-content\/uploads\/2015\/09\/PCI-Image.jpg","type":"image\/jpeg"}],"author":"cPanel Community","twitter_card":"summary_large_image","twitter_creator":"@cPanel","twitter_site":"@cPanel","twitter_misc":{"Written by":"cPanel Community","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/","url":"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/","name":"What goes into protecting your credit card information on the web? | cPanel","isPartOf":{"@id":"https:\/\/devel.www.cpanel.net\/#website"},"datePublished":"2017-11-28T14:00:00+00:00","dateModified":"2017-11-28T14:00:00+00:00","author":{"@id":"https:\/\/devel.www.cpanel.net\/#\/schema\/person\/8cf97408aad4fb70cf55d11a1d4f57f8"},"breadcrumb":{"@id":"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/devel.www.cpanel.net\/blog\/tips-and-tricks\/whats-pci-and-why-does-it-matter\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/devel.www.cpanel.net\/"},{"@type":"ListItem","position":2,"name":"What goes into protecting your credit card information on the web?"}]},{"@type":"WebSite","@id":"https:\/\/devel.www.cpanel.net\/#website","url":"https:\/\/devel.www.cpanel.net\/","name":"cPanel","description":"Hosting Platform of Choices","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/devel.www.cpanel.net\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/devel.www.cpanel.net\/#\/schema\/person\/8cf97408aad4fb70cf55d11a1d4f57f8","name":"cPanel Community","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/devel.www.cpanel.net\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/e1949945083b5526bb95711bd3d616b3?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e1949945083b5526bb95711bd3d616b3?s=96&d=mm&r=g","caption":"cPanel Community"},"description":"The web hosting industry's most reliable management solution since 1997. With our first-class support and rich feature set, it's easy to see why our customers and partners make cPanel &amp; WHM their hosting platform of choice. For more information, visit cPanel.net.","sameAs":["https:\/\/cpanel.net"],"url":"https:\/\/devel.www.cpanel.net\/blog\/author\/cpadmin\/"}]}},"_links":{"self":[{"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/posts\/34132"}],"collection":[{"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/users\/77"}],"replies":[{"embeddable":true,"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/comments?post=34132"}],"version-history":[{"count":0,"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/posts\/34132\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/media\/64401"}],"wp:attachment":[{"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/media?parent=34132"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/categories?post=34132"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devel.www.cpanel.net\/wp-json\/wp\/v2\/tags?post=34132"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}