The document discusses the Aerohive Personalized Engagement Platform which provides a flexible and secure Wi-Fi network that addresses PCI 3.0 compliance requirements for retailers. It includes features like strong encryption, authentication, intrusion detection and a firewall to isolate cardholder data. The platform also offers PCI compliance reporting through HiveManager to identify issues and vulnerabilities. Maintaining PCI compliance is important as wireless networks become critical for retail customer engagement and sales.
2. The Aerohive Personalized Engagement Platform provides a flexible, high-performance Wi-Fi
network with advanced security features that address PCI 3.0 requirements. Gain a highly
secure way to personalize the shopping experience for in-store customers while
complementing your PCI compliance goals.
Challenges
Recent breaches at high-profile retailers have put credit card and customer
data security back in the spotlight. Securing this data becomes even more
challenging as retailers look for innovative ways set themselves apart, increase
in-store traffic, strengthen customer loyalty, and drive sales. Many retailers are
implementing mobile strategies that allow customers to do everything from
check item availability and compare products to make mobile purchases with
their smartphones. These new capabilities place new security and compliance
demands on wireless networks.
PCI Compliance and Access Networks
Access networks provide network connectivity to point-of-sale devices, laptops, and
mobile phones in the retail store. The PCI Data Security Standard (PCI DSS)
applies to all network components—wired and wireless. The PCI Security Standards
Council continues to update PCI DSS requirements to address the dynamic threat
landscape. Version 3.0 of the PCI Data Security Standard (PCI DSS) became effective
on Jan. 1, 2014.
For wireless and access networks, the elements generally included in PCI
compliance checking are Wi-Fi access points, switches, firewalls, authenticating
servers, and any security appliance is part of the cardholder data environment
(CDE). The specific PCI DSS requirements that apply to wireless and access
networks are shown in Figure 1.
Guideline Benefit
4.1.1 - Ensure wireless networks
transmitting cardholder data or
connected to the cardholder data
environment, use industry best
practices (for example, IEEE 802.11i)
to implement strong encryption for
authentication and transmission.
Note: The use of WEP as a security
control is prohibited.
Use the latest, most advanced
encryption standards to permit only
authorized devices and users in the
network.
6.5.10 - Broken authentication and
session management.
Note: Requirement 6.5.10 is a best
practice until June 30, 2015, after
Secure authentication and session
management prevents
unauthorized individuals from
compromising legitimate account