cardholder data environment (CDE)

A cardholder data environment or CDE is a computer system or networked group of IT systems that processes, stores and/or transmits cardholder data or sensitive payment authentication data, as well as any component that directly connects to or supports this network.

A cardholder data environment (CDE) is a computer system or networked group of IT systems that processes, stores and/or transmits cardholder data or sensitive payment authentication data. A CDE also includes any component that directly connects to or supports this network.

The Payment Card Industry Data Security Standard (PCI DSS) includes specific requirements for securing electronic payment and authentication data residing on all physical and virtual components in the CDE, including:

Most data breaches  in the retail sector involve a compromise of the cardholder data environment. To that end, the PCI DSS requires a variety of controls to secure the CDE, including network segmentation. If the size and scope of the cardholder data environment is minimal and is adequately isolated using technology and rule sets, it will reduce the likelihood of a data breach.

This was first published in May 2014

Glossary

'cardholder data environment (CDE)' is part of the:

View All Definitions

Dig deeper on PCI Data Security Standard

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

File Extensions and File Formats

Powered by:

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close