Multikart completed the project of scanning of vulnerabilities in the PCI DSS standard

The processing company "Multikarta" completed in the summer of 2016 the project on ASV scanning of vulnerabilities according to requirements of the PCI DSS standard. As the partner in implementation of this project the DialogNauka company acted.

In the project progress works on scanning of the list of the IP addresses, determination of the used services, devices and operating systems, detection of vulnerabilities for each IP address, the analysis of the revealed vulnerabilities, assessment of the status of compliance and diwake process were performed. Scanning covered all external systems of the processing company which participate in transfer and data processing of payment cards, provide security of external network perimeter. During the project strict requirements of the PCI DSS 3.1 and PCI DSS ASV Program Guide standard were considered.

For carrying out external scanning within ensuring compliance to requirements of the international standard PCI DSS representatives of Multikarta LLC asked for the help DialogNauka company which has the accreditation of Approved Scanning Vendor (ASV) allowing to carry out ASV scanning of vulnerabilities according to requirements of the standard.

Specialists of JSC DialogNauka performed the following works:

• scanning of the list of the IP addresses,
• determination of the used services, devices and operating systems,
• detection of vulnerabilities for each IP address,
• the analysis of the revealed vulnerabilities,
• assessment of the status of compliance,
• diwake process.

Scanning covered all external systems of Multikarta LLC which participate in process of transfer and data processing of payment cards, provide security of external network perimeter. During the project strict requirements of the PCI DSS 3.1 and PCI DSS ASV Program Guide standard were considered.