Pluribus One - E-Payment Case History

Case History: Payment sector

Monitoring the traffic of a provider of payment services, including POS, PagoPA and Payment Gateways

PRIVACY

Pluribus One Web Application Security® guarantees an absolute control of traffic data relating to the monitored services. All traffic data, useful for detecting possible threats, is locally stored by the solution, without having to pass your traffic through external or third-party infrastructures to benefit from the monitoring and protection features.
This means that vulnerability information is always confidential and data is always under the customer's control.

For this reason Pluribus One guarantees the privacy and anonymity of its customers in all phases of work and assistance, including the description of the case history.

Business scenario
The customer is the IT company of a Bank Group, provider of payment services, including POS, PagoPA and Payment Gateways, subject to PCI DSS, provider/maintainer of webservices for several public and private customers.

Customer need
The customer interest is to increase «situational awareness» and to enable quick evaluation and prioritization of the detected threats.

Key benefits after Pluribus One's assistance
1. Capabilities of inspecting the HTTP(s) traffic higher than the other solutions already in the infrastructure.
2. Possibility to run the solution in parallel with other products.
3. High usability of the GUI.

Product/service used to support the customer:

Pluribus One Web Application Security®

When
April 2020 - current

HW requirements of the WAS® installation
8 vCPU – 8GB RAM – 300GB HDD

Connected components
Data Source: Pulse Secure Virtual Traffic Manager®
Monitoring: IBM® QRadar® SIEM

Services to monitor
Number of services: 13
Requests/day: 3Mln hit/day
Sought retention period: 15 days

Installation architecture before and after

Case History: Payment sector

Info

Legal entity

University of Cagliari