• RSS
  • Twitter
  • FaceBook

Exchange Server Forums

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

PCI compliance

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [Microsoft Exchange 2007] >> Compliance >> PCI compliance Page: [1]
Login
Message << Older Topic   Newer Topic >>
PCI compliance - 24.Nov.2010 10:45:00 AM   
catzodellamarina

 

Posts: 143
Joined: 26.Feb.2008
Status: offline
We are about to begin a PCI compliance project. Part of the process will require encryption of "data at rest" on our SAN. Since I have my Exchange DB's on the SAN, it appears that they are within this scope. Is adding PCI encryption to my Exchange disks is necessary? Is there a risk in adding encryption? Is an Exchange .EDB data at rest already classified as encrypted?

Anything is possible but I can't see it being all that simple to steal, mount, and get all the emails out of my .EDB's. Can someone shed some light on this?
Post #: 1
RE: PCI compliance - 1.Jan.2011 12:53:52 PM   
pjhutch

 

Posts: 3578
Joined: 21.Jul.2001
From: W Yorks, England
Status: offline
I would say the data is encoded rather than encrypted.

See these articles:
http://technet.microsoft.com/en-us/library/aa996118%28EXCHG.65%29.aspx

_____________________________

Peter Hutchison MCP
Exchange Administrator
University of Huddersfield

(in reply to catzodellamarina)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [Microsoft Exchange 2007] >> Compliance >> PCI compliance Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts


Follow TechGenix on Twitter