Quasar is an economic Cardholder Data Discovery scanning solution.

Any organisation involved in handling credit cards runs the risk of having card data build up in unanticipated places. Card data breaches are costly to remediate and damaging to reputations and the bottom line. The first step is getting a handle on where your card data IS, where it came from, and where it’s going. Get in touch now to find out how Quasar can work for you!

Quasar Is…

Comprehensive

Scan virtually any kind of textual data on the most common operating systems

Comprehensive

The filesystem scan engine can access virtually any form of textual data in files, and provides additional metadata outputs for common office formats, text, PDF, email and database files. Additionally a wide variety of common container formats are supported, such as zip and tar files.

The recursive file access engine finds cardholder data even if it is buried in files multiple levels deep. (E.g. attached to an email inside a zipped email archive folder.) The text scanner collects surrounding contextual data from the same line of text, which is helpful for analysis.

Lightweight

Small install footprints & performance management options

Lightweight

Small install footprints and performance management options like CPU usage caps and Volume Shadow Copy ensure that the scanner agents have little to no impact on the databases and fileservers they scan.

Results are streamed from scanners to server throughout a scan to minimise network usage.

Minimal training & deployment requirements to get up and running saves manpower and time resources.

Flexible

Flexible deployment options and flexible scanning options

Flexible

Agents can be deployed remotely and can also be configured to scan remote resources in turn. Thus they can support a variety of different topologies enabling you to deploy in the most suitable and frictionless manner for your organisation.

Time window scheduling can enforce after hours scanning of critical resources, while also allowing for ad-hoc operations or ‘as & when’ scans of ‘road warrior’ type hosts.

SAD/Track patterns and file metadata blacklists are dynamically adjustable to speed scans while flexibly complying with site data discovery policies.

Secure

End to end encryption and security make sure any cardholder data found is protected

Secure

Collected CHD is safeguarded with industry standard AES encryption while in-flight to the results server, and aggressively truncated at all export and view points once there. Analysis work can be conducted with the assurance that CHD results are harmless and safe.

The user interface integrates with Active Directory environments to enable role-based access controls and SSO for domain users. An audit trail is maintained of user actions, system changes, and attempts to export sensitive data.

Intuitive

Self-contained and easy to install, Quasar has a straightforward UI letting you start scans fast

Intuitive

Self-contained installers that are compatible with SCCM and group-policy style rollout systems make deployment easy.

Quasar’s straightforward UI and job system enable operators to get up to speed creating and monitoring scans rapidly, saving manpower and time resources.

Job summary pages and dashboards enable policy stakeholders to gain a “10,000 foot view” of scan results with a minimum of effort.

Evolving

Regularly updated false positive filters and BIN lists make sure Quasar evolves with the payment industry

Evolving

The false-positive filter system is constantly being updated and refined as QSL gains field experience with large & varied bodies of data. Quasar also incorporates a frequently updated international BIN list maintained by reputable 3rd party suppliers to assist scan accuracy.

Development of quasar proceeds in a number of areas, expanding the platform to scan both new types of targets (database, document stores, email systems etc) AND new types of data (SSNs, credentials, PII) as the roadmap progresses.

Contact Us for More Information