Security
You can trust that Quasar Scan is secure
One of Quasar Scan’s biggest strengths is its robust security measures. We take security measures to the highest level when handling your stored card data, because the last thing you want to do is create a higher risk of security breach!
Quasar Data Security
All network traffic sent and received by Quasar Scan is encrypted. It is also stored separately from the Quasar Scan viewer via a secure pipeline. When someone wants to open a file in the viewer, they will need to use a password. Inside the viewer is the only time a user can see all of your card details in full.
Out of the box, card numbers cannot be extracted from the system, only viewed in-place. Whenever data is exported, the full details of the cards are safeguarded as Quasar Scan truncates sections of the card numbers. If you have special needs around extraction, please contact our team.
You can always get in touch with one of our team if you want to find out more about our security measures.
Data Security
- All Quasar files are encrypted at rest using AES-CTR mode encryption and 256-bit keys
- HMAC-signed messages for encryption of in-flight cardholder data to the results server to ensure that cardholder data cannot be compromised in the course of normal operations.
- The shipped configurations are aggressive in their approach to truncation, but they are customisable to meet your analysis and workflow requirements as well as to adapt to changing card number formats.
User Access & Auditing
- Role-based access controls for the web-based interface prevent unauthorised users from accessing reports or running scans.
- Security features ensure a tamperproof audit-trail of user actions, system modifications, and attempts to view and/or export sensitive data.
Eliminate the fear of the unknown. Find your at-risk cardholder data now!
Quasar Scan FAQ
Through over a decade of development, real-world testing, and refining, we understand the issues businesses and organisations of all sizes face when it comes to achieving PCI DSS compliance. Quasar Scan has been built to offer you a better way to create simple and sustainable compliance, reduce your risk, and protect your enterprise and your customers
User Guide
When you download Quasar Scan, the all-in-one installation of both the server and viewer makes it easy and fast to get started with your first scan.
You’ll also find detailed support in our User Guide, to connect and scale at pace.