Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: PCI and banks that use Akamai

From: Jeffrey Schiller <jis () MIT EDU>
Date: Mon, 14 Jun 2010 14:47:39 -0400
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 06/14/2010 02:22 PM, Daniel, Jack wrote:

I believe it would be only for static content however if a bank were
using Akamai for transaction exchange they do offer a PCI compliant
service:
http://www.akamai.com/html/about/press/releases/2007/press_103007.html


This has to be something very different from their normal content
distribution network. For example we have a pile of Akamai servers
located in one of our data centers that is not PCI compliant (from a
physical security standpoint). So in theory there is no way for these
servers to be PCI compliant. So hopefully they have nothing to do with
Akamai's PCI compliant payment platform.

                       -Jeff

- --
========================================================================
Jeffrey I. Schiller
MIT Network Manager/Security Architect
PCI Compliance Officer
Information Services and Technology
Massachusetts Institute of Technology
77 Massachusetts Avenue  Room W92-190
Cambridge, MA 02139-4307
617.253.0161 - Voice
jis () mit edu
http://jis.qyv.name
========================================================================

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iD8DBQFMFnlL8CBzV/QUlSsRApObAKCNnpk8Ef0t1aU4g5uRMIAmZxn5DwCfVcpZ
rViSMHKNEa/0iPofd9Xby24=
=685f
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: