Key Rotation
| This article is part of the Payment Processing Software Library |
|
| Get it... | |
| Install it... | |
| Connect to it... | |
| Set it up... | |
| Learn to use it... | |
|
→ Manual & User Guide | |
| Fix it... | |
|
→ Errors & Troubleshooting | |
| Get Help... | |
| More Info ... | |
| See also... | |
CreditLine Payment Processing Software Setup - Secure Key Rotation. This site can also be reached at http://docs.911software.com
→ Looking for better rates? Get a Free Credit Card Processing Cost Comparison!
Contents
Overview
Per PA-DSS’s request, each CreditLine server is required to maintain a set of unique key tables (DataEncryptingKey, KeyEncryptingKey). These key tables need to be updated manually every 90 days (see below for the procedure). The reminder is only popped up on CreditLine Manager. Not updating key tables will not block any transaction or any operation. The default expiration time is 90 days which can be configured in 911_CCV.INI <quote>
- Life Cycle of the current encryption key, default value is 90 days.
- Users will be promted to update the encryption key if reaching this value or all operations will be blocked.
- KeyLifeCycle=90
</quote>
Rotating Security Keys
