This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Looking to upgrade from Dynatrace Managed to SaaS? See how

Dynatrace and PCI DSS compliant systems

Go to solution
takahiko_imazon
Newcomer

‎02 Dec 2019 02:32 AM - last edited on ‎13 Apr 2023 10:46 AM by Community Team

Hi all,

I'm looking for use cases of Dynatrace for PCIDSS-compliant systems.

Are you using Dynatrace for PCIDSS-compliant systems?

How are you using it?

 

Regards,

Takahiko

 

0 Kudos
Reply
1 REPLY 1

Go to solution
skrystosik
DynaMight Guru
DynaMight Guru

‎14 Jan 2020 10:06 AM

We have dynatrace on such applications. What are you concern about? Security? In general there are few issues here. For example, you can have application where card numbers and other informations are send as query parameters. In such case all users of dynatrace that has access to purepaths will be able to see them. I’ve made RFE some time ago about option to use private settings (DT has option to mask such data for whole environment) for particular system. This technology is quite aggressive and makes other systems sometimes hard to analyze (It hides for example IP addresses in URIS, so it’s harder to use them by developers or administrators).


Second option is ability to extract sensitive data using request Attributes. Here you can add permissions only for users that has proper contracts signed. Only they for example will be able to create such configurations and read values. For others this option may be masked.

Sebastian


Regards, Sebastian
Reply
Ask a question

Featured Posts