PCI Compliance Solutions

Learn How Prime Factors Can Help You Become PCI Compliant

PCI DSS Requirements
Implementing the Payment Card Industry Data Security Standards (PCI DSS) is a complex process. There are no complete solutions from any one vendor but we at Prime Factors can offer the STK Toolkit, a flexible, inexpensive product to protect sensitive customer data in your IT systems. A recent survey of our existing customers indicates that they are using STK to encrypt data such as names, salary amounts, accounts numbers, SSNs, PINs, passwords, credit card data, EDI files, and EFT files.

The STK Toolkit is especially useful in protecting cardholder data when it is stored (requirements 3.3, 3.4, 3.5. and 3.6.) The STK Toolkit uses two strong encryption algorithms, (1) triple DES which is also known as TDES or 3DES, and (2) the Advanced Encryption Standard which is also known as AES. These algorithms are both approved by the U.S. Government and are commonly used in the financial industry.

The STK Toolkit is also available for a wide variety of computers, Including the IBM zSeries, iSeries and pSeries as well as many non-IBM computers (see STK Toolkit). Encrypted data can be exchanged between different types of computers using handy subroutines to convert hex to binary and ASCII to EBCDIC.

Encryption keys can be entered & stored safely using a special Key Management Utility.

For additional practical information about PCI DSS try the following links:

Short list of 12 requirements (PF addresses #3)

Full text of PCI DSS Version 1.1 after accepting license terms.

List of Frequently Asked Questions.

List of Qualified Security Assessors (PDF File)

Why We're Different.
"We like to blow our own horn from time to time."