re: Would you send a plain text password from your website to the server over a secure connection? VIEW POST

TOP OF THREAD FULL DISCUSSION
re: It doesn't require "no storage" (at least, not of the PAN), just that we protect the storage (requirement 3.4 of PCI-DSS 3.2), which includes withi...

When we had a pa dss audit every server had it's hard drive cloned and checked for anything matching the luhn algorithm. Lots of false positives but your solution seems like an excellent precaution.

code of conduct - report abuse