Redis Case Studies Redis Enterprise: A PCI-Compliant Solution for Credit Card Security Management

Edit This Case Study Record

	Redis Enterprise: A PCI-Compliant Solution for Credit Card Security Management Redis

Redis Enterprise: A PCI-Compliant Solution for Credit Card Security Management

Redis

Technology Category	Cybersecurity & Privacy - Security Compliance Functional Applications - Enterprise Resource Planning Systems (ERP)
Applicable Industries	E-Commerce Finance & Insurance
Applicable Functions	Quality Assurance
Use Cases	Leasing Finance Automation Retail Store Automation
Challenge	A Fortune 500 company in the travel and hospitality industry, serving 40 million customers annually, was faced with the challenge of managing its customers’ credit card information in a highly secure and compliant manner. The company's compliance team was in need of a highly available, PCI-compliant solution for managing credit card security codes, also known as CVV or CSC codes. The solution had to meet stringent requirements such as running in-memory, expiring stored information after a short period, and encrypting payment data to ensure minimal correlation between CVV codes and other cardholder information. The need for this solution was further accelerated by the COVID-19 pandemic, which pushed the company to modernize its applications and infrastructure, particularly its e-commerce payments platform. Read More
About Customer	The customer is a Fortune 500 company in the travel and hospitality industry. The company serves 40 million customers around the world annually. Its mission is to bring humanity to the travel and hospitality industry and create memorable experiences for its customers. Like many other businesses in its industry, this company focused on new ways to provide for and accommodate customers during the outbreak of COVID-19. The pandemic also accelerated the company’s efforts to modernize its applications and infrastructure, including the strengthening of the availability, security, and compliance of the company’s e-commerce payments platform. Read More
Solution	After performance testing and evaluating multiple options including Memcached and MongoDB, the team chose Redis Enterprise to meet its PCI-compliance requirements. Redis Enterprise was selected for its fast performance, failover capabilities, linear scalability via clustering, and ease of use. The support provided by Redis was also a key factor in the decision. The compliance team received quick responses and immediate notifications of any issues, along with patches to resolve them. With guidance from Redis, the team was able to quickly configure its clustering and DNS setups, and had its compliance environment ready within just a few days. The team is now looking to further leverage Redis Enterprise by migrating other components of its credit card data management application into the cloud and exploring other ways that Redis Enterprise can help deliver speedy yet secure experiences to its customers. Read More Log in to view content
Contents

Technology Category

Cybersecurity & Privacy - Security Compliance

Functional Applications - Enterprise Resource Planning Systems (ERP)

Applicable Industries

E-Commerce

Finance & Insurance

Applicable Functions

Quality Assurance

Use Cases

Leasing Finance Automation

Retail Store Automation

Challenge

A Fortune 500 company in the travel and hospitality industry, serving 40 million customers annually, was faced with the challenge of managing its customers’ credit card information in a highly secure and compliant manner. The company's compliance team was in need of a highly available, PCI-compliant solution for managing credit card security codes, also known as CVV or CSC codes. The solution had to meet stringent requirements such as running in-memory, expiring stored information after a short period, and encrypting payment data to ensure minimal correlation between CVV codes and other cardholder information. The need for this solution was further accelerated by the COVID-19 pandemic, which pushed the company to modernize its applications and infrastructure, particularly its e-commerce payments platform.

About Customer

The customer is a Fortune 500 company in the travel and hospitality industry. The company serves 40 million customers around the world annually. Its mission is to bring humanity to the travel and hospitality industry and create memorable experiences for its customers. Like many other businesses in its industry, this company focused on new ways to provide for and accommodate customers during the outbreak of COVID-19. The pandemic also accelerated the company’s efforts to modernize its applications and infrastructure, including the strengthening of the availability, security, and compliance of the company’s e-commerce payments platform.

Solution

After performance testing and evaluating multiple options including Memcached and MongoDB, the team chose Redis Enterprise to meet its PCI-compliance requirements. Redis Enterprise was selected for its fast performance, failover capabilities, linear scalability via clustering, and ease of use. The support provided by Redis was also a key factor in the decision. The compliance team received quick responses and immediate notifications of any issues, along with patches to resolve them. With guidance from Redis, the team was able to quickly configure its clustering and DNS setups, and had its compliance environment ready within just a few days. The team is now looking to further leverage Redis Enterprise by migrating other components of its credit card data management application into the cloud and exploring other ways that Redis Enterprise can help deliver speedy yet secure experiences to its customers.

Impact #1	The implementation of Redis Enterprise has resulted in a highly secure and compliant solution for managing customers' credit card information. The company now has a PCI-compliant data store that runs in-memory, expires stored information after a short period, and encrypts payment data to ensure minimal correlation between CVV codes and other cardholder information. The solution also offers high availability, fast performance, failover capabilities, and linear scalability via clustering. The support provided by Redis has been instrumental in quickly resolving any issues and ensuring the smooth operation of the compliance environment. The company is now exploring further uses of Redis Enterprise, including migrating other components of its credit card data management application into the cloud.

Impact #1

The implementation of Redis Enterprise has resulted in a highly secure and compliant solution for managing customers' credit card information. The company now has a PCI-compliant data store that runs in-memory, expires stored information after a short period, and encrypts payment data to ensure minimal correlation between CVV codes and other cardholder information. The solution also offers high availability, fast performance, failover capabilities, and linear scalability via clustering. The support provided by Redis has been instrumental in quickly resolving any issues and ensuring the smooth operation of the compliance environment. The company is now exploring further uses of Redis Enterprise, including migrating other components of its credit card data management application into the cloud.

Benefit #1	The compliance environment was ready within just a few days
Benefit #2	The company serves 40 million customers annually, all of whom are now better protected

Benefit #1

The compliance environment was ready within just a few days

Benefit #2

The company serves 40 million customers annually, all of whom are now better protected

Download PDF Version

Overview

Redis Enterprise: A PCI-Compliant Solution for Credit Card Security Management

Operational Impact

Quantitative Benefit