Hacker News new | past | comments | ask | show | jobs | submit login

It was to meet the PCI-DSS Level-1 security standards for banking compliance. We'd store encrypted cards in one place and store the master keys in the AWS KSM to later decrypt it. But to retrieve the master keys, it goes through another layer of encryption.



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: