BRIEFING: Protecting Data at the Point of Input.

When:
Thursday, August 18, 2022
11:00 am PDT / 2:00 pm EDT / 7:00 pm BST

You're protecting data in transit and data at rest, but criminals have shifted their focus to stealing data at the most sensitive point - the point of input. They are issuing new techniques to conduct client-side (browser side) attacks. The issue is so pronounced that the PCI Council made protecting data at the point of input a focus in PCI DSS 4.0. Sections 6.4.3 and 11.6.1 specifically call for preventative measures to close the security gaps that facilitate client-side attacks.

Join Randy Paszek, solution engineer, Office of the CTO, for a deep dive into how these attacks occur, a breakdown of the current technical environment surrounding client-side security, and an analysis of the guidance found in 6.4.3 and 11.6.1 that will help you easily get on the path to protecting data at the point of input.

Key takeaways:

Gain a complete understanding of client-side attacks and how they operate outside your other web security protections
Understand how criminals are exploiting your own code and your 3rd party digital supply chain to steal data at the point of input
Discuss updates included in PCI DSS v4.0, specifically 6.4.3 and 11.6.1
Compare and contrast the available options for addressing client-side attacks
Learn how you can easily address the issue of client-side attacks without adding more work for your security teams