We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Is the Email Security Gateway PCI compliant?

  • Type: Knowledgebase
  • Date changed: 10 months ago
Solution #00001870

Scope:
All Email Security Gateways, all firmware versions.

Answer:
Payment Card Industry (PCI) compliance is used to describe an organization itself, rather than each piece of technology within the organization.

With that said, a PCI compliant email system can be created with the Email Security Gateway. The Email Security Gateway supports TLS encryption, a system to secure data sent across public networks via SMTP. This also provides a secure system for administrators to view the Barracuda's Message Log. As long as the necessary precautions are taken to secure access to the Message Log, you should be well within PCI compliance guidelines.

In addition to network security, any Email Security Gateway in outbound mode includes preset credit card filters to prevent e-mail containing credit card numbers from leaving the network. While this is not specifically mentioned in the PCI Data Security Standard (DSS), Email Security Gateways offer this additional protection.

Additional Notes:
Link to the official PCI DSS:

https://www.pcisecuritystandards.org/pdfs/pci_dss_v1-1.pdf

Link to This Page:
https://campus.barracuda.com/solution/50160000000GWExAAO