On Tue, 25 Aug 2009 16:13:28 -0500, Hal Merritt <[email protected]> wrote:
>VPN is a good solution, but not PCI compliant. You shouldn't have sensitive data flowing over a network in the open. Period. You would use VPN to gain access to the network, but layer another solution such as TLS on top. I don't understand that comment, Hal. VPN technology and solutions certainly include encryption of the data that flows over the network. You don't need TLS or SSH or some other added encryption on top of it. -- Walt Farrell, CISSP IBM STSM, z/OS Security Design ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
