DNP Kashiwa Data Center Cloud Platform Service Acquires PCI DSS 3.1

International security standard for payment card

Dai Nippon Printing Co., Ltd. (DNP) is pleased to announce that the Kashiwa Data Center cloud platform service (MG Cloud) has acquired certification for the latest 3.1 version of the Payment Card Industry Data Security Standards1 (PCI DSS).

As a result of this certification, companies that operate payment enterprises using MG Cloud, will no longer be required to acquire certification relating to hardware or data center facilities, and will be able to operate PCI DSS compatible services with software-related certification, alone. This is expected to lead to substantial reductions in the time and work burdens required to acquire certification.

[Background and Benefits of Certification]

In recent years, an increased penetration has been seen in cashless payments that boost convenience and efficiency for consumer. Credit card and e-money settlement services based on mobile devices such as smart phones have already been launched. In order to boost the security of such payment services, companies operating related services are being required to configure and operate PCI DSS compatible systems, and in the future, it will be essential to acquire such certification. At the same time, however, compatibility with standards with detailed stipulations is required in all areas related to system configuration and operation, such as data management hardware, networks, basic software and applications. And, the acquisition of certification on a service-by-service basis is a major task and financial burden for companies.

In answer to these challenges, DNP has configured2 a PCI DSS 3.1 version compatible cloud platform on the MG cloud at the DNP Kashiwa Data Center. As certification has been acquired on a cloud basis, companies operating payment related enterprises are now in a position to launch the operation of PCI DSS compatible payment services in a timely manner, and at low cost, through the acquisition of certification for operating systems and software only.

- Certification Summary

Certification standard:

PCI DSS Version 3.1 (April 2015)

Audit scope:

MG Cloud IaaS PCI DSS

Screening Body:

BSI Group Japan K.K.

[Forward Looking Developments]

DNP will offer this service to companies that handle highly confidential information, such as financial institutions, or processors providing settlement outsourcing, aiming for sales of approximately 10 billion in the five years to FY 2020.

 
* DNP has positioned Knowledge and Communication, Food and Healthcare, the Environment and Energy, and Lifestyle and Mobility as growth areas, and is engaged in the creation of new values. In promoting these efforts it is essential to handle information in a safe and secure manner, and with this in mind, the Company opened the DNP Kashiwa Data Center in December 2013. In addition to providing advanced information security, earthquake and fire resistance, the center has also adopted the cloud based technology of Nihon Unisys, making it possible to properly manage highly confidential big data. DNP will operate both original and client-based services in a safe and secure manner, and use this as a step towards the expansion of information-driven business.
 
1 PCI DSS (Payment Card Industry Data Security Standards): An international payment card industry security standard created with the objective of safely handling cardholder data from merchants and service providers. Jointly developed by the five global payment brands (American Express, Discover, JCB, MasterCard and VISA) and operated and managed by the PCI Security Standards Council (PCI SSC).
2 Uses the enterprise cloud technology of Nihon Unisys, Ltd, and was configured in cooperation with UNIADEX, Ltd.
 
* Product prices, specification and service contents mentioned in this news release are current as of the date of publication. They may be changed at any time without notice.