XYPRO and ACI Worldwide offer PCI DSS 4.0 Compliance for BASE24 Customers

XYPRO and ACI Worldwide offer PCI DSS 4.0 Compliance for BASE24 Customers

Most banking applications are built on earlier architectures and technologies and pose significant security challenges, especially under the new Payment Card Industry Data Security Standards 4.0 (PCI DSS). These applications face greater risk due to coding practices at development time and the absence of modern security features like Multi-Factor Authentication (MFA). Enhancing these applications with MFA is a necessity to protect against unauthorized access and data breaches.

PCI DSS v4.0 Requirement 8.4.2 mandates at least two forms of user authentication into the CDE, such as a password and a generated passcode.

This significantly reduces the risk of unauthorized access, as the compromise of one factor alone is not enough to breach the system. For banking applications, incorporating MFA provides layers of security, aligning mature systems with new compliance standards.

On HPE NonStop systems, you meet this requirement with XYGATE User Authentication (XUA). XUA seamlessly integrates MFA with your RSA SecurID, Microsoft Authenticator, Active Directory, Google Authenticator, RADIUS, and more making your systems and users secure and compliant.

For BASE24 customers looking to achieve PCI DSS 4.0 compliance, ACI Worldwide and XYPRO have partnered to extend this same capability to BASE24. This integration strengthens the security of your HPE NonStop applications, such as BASE24 through industry-leading multi-factor authentication. User access to the BASE24 CDE is currently provided by way of the BASE24 AFT screens. With this XYPRO MFA update, users are presented with additional screen(s) to enter authentication details with MFA Authorization provided by XYPRO.

XYPRO and ACI Worldwide empower you for PCI DSS 4.0 Compliance

 According to Microsoft, 81% of data breaches occur because of weak, default, or stolen credentials. BUT, 99% of these attacks can be blocked by implementing Multi-Factor Authentication (MFA). ACI and XYPRO help ensure your BASE24 workloads are not part of this statistic.

XUA MFA provides:

  • Enhanced Security Posture: MFA adds an additional layer of security by ensuring that the likelihood of unauthorized access through compromised credentials is drastically reduced.
  • Regulatory Compliance: PCI DSS 4.0 has placed a greater emphasis on authentication measures. Implementing MFA helps in meeting these requirements, thereby avoiding potential penalties.
  • Adaptability and Future-Proofing: By upgrading your banking systems with MFA, you not only comply with current standards but also prepare for future regulations, which are likely to emphasize even stronger security measures.

The XUA BASE24 MFA add-on requires an additional license to enable the feature and installs in minutes. XYPRO professional services ensure your MFA solution is properly installed, configured, and secured to address this PCI DSS 4.0 requirement without disruption.
For more information, please contact XYPRO or HPE.

Enhancing legacy applications with Multi-Factor Authentication is not just about achieving compliance with PCI DSS 4.0; it’s about taking a proactive stance against emerging security threats. As cyber risks evolve, so too must your approaches to securing sensitive payment card information. By integrating MFA, you significantly fortify your defenses,  meeting and exceeding the stringent PCI DSS 4.0 requirements.

Safeguard your customer data and maintain trust.

Product Requirements

 

 

 

 

 

 

 

Author

  • XYPRO Team

    A leader in protecting mission-critical systems for the banking, financial services, retail and payments processing industries, XYPRO closely partners with HPE who bundles XYPRO solutions with their high-end server HPE NonStop Operating System. XYPRO’s security solutions provide Patented Security Analytics & Contextualization for Risk Management, PCI Compliance, Integrity Checking, Privileged Identity & Access Management, Authentication, Authorization and Identity Management. Many of the world’s largest companies use XYPRO to secure their mission-critical systems.

Be the first to comment

Leave a Reply

Your email address will not be published.


*