https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28810#M1845 <P>My guidance would be...</P><P>&nbsp;</P><P>Follow your steps, and document your reasoning for why you think each step is required and sufficient for destroying.&nbsp; DSS doesn't give us many methods, just requirements.&nbsp; defending your interpretation of the requirements is easier if you remember why you did it.</P><P>&nbsp;</P><P>DSS compliance is more about making sound decisions and documentation of those decisions, from my experience.</P><BLOCKQUOTE><HR /><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/809125741">@Caute_cautim</a>&nbsp;wrote:<BR /><P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/783051913">@Steve-Wilme</a>Thanks for the response.&nbsp;&nbsp; If only as usual.</P><P>&nbsp;</P><P>However, working with the Storage guys, we have come up with a loose set of steps:</P><P>&nbsp;</P><P>1) Identity all Servers workloads and names and identify the LUNs (Logical Unit Numbers)</P><P>2) Delete Snaspshots</P><P>3) Delete VMDK's</P><P>4) Apply Secure Wipe to each of the LUNs</P><P>5) As we have a fully audited storage regime, the tapes will be destroyed in time, by professional services and verified.&nbsp; In the mean time, they are fully secured from beginning to end.</P><P>6)&nbsp; Audit records have to be kept for a minimum of 12 months after the above.</P><P>&nbsp;</P><P>Alternatives:&nbsp; Specialist software for securely wiping Virtual Machines.&nbsp;&nbsp;&nbsp; Costly.</P><P>&nbsp;</P><P>Or upgrade current set up and encrypt all Virtual Machines - encryption key held by VMware Administrator.</P><P>Destroy the key to ensure no key recovery or recovery of data.&nbsp;&nbsp; Costly in this case.</P><P>&nbsp;</P><P>Any other suggestions?</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><HR /></BLOCKQUOTE><P>&nbsp;</P> Wed, 09 Oct 2019 13:48:22 GMT Huntington 2019-10-09T13:48:22Z https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28763#M1837 <P>Hi All</P><P>&nbsp;</P><P>PCI DSS states within V3.2.1 section 9.8, that a secure wipe is required to eliminate any residual credit card holder data.&nbsp;&nbsp; This appears to be out of date given the majority of organisations are running virtualised environments, and potentially with the cloud, albeit a Private one.</P><P>&nbsp;</P><P>Organisation in this case is moving the current Credit Holders Environment (CHE) to another provider, but of course one has to secure eradicate the current environment and keep audit records for a year after the event.</P><P>&nbsp;</P><P>Recommendations from experience on techniques to meet Section 9.8 requirements?</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Mon, 07 Oct 2019 18:58:56 GMT https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28763#M1837 Caute_cautim 2019-10-07T18:58:56Z https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28777#M1840 <P>Essentially crypto shredding would probably fit this bill and be accepted by your QSA as meeting the intent of the requirement.&nbsp; We've largely avoided the issue however, by not storing PANs via on premise tokenisation in some channels and end to end encryption in others.</P><P>&nbsp;</P><P>&nbsp;</P> Tue, 08 Oct 2019 10:11:13 GMT https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28777#M1840 Steve-Wilme 2019-10-08T10:11:13Z https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28791#M1842 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/783051913">@Steve-Wilme</a>Thanks for the response.&nbsp;&nbsp; If only as usual.</P><P>&nbsp;</P><P>However, working with the Storage guys, we have come up with a loose set of steps:</P><P>&nbsp;</P><P>1) Identity all Servers workloads and names and identify the LUNs (Logical Unit Numbers)</P><P>2) Delete Snaspshots</P><P>3) Delete VMDK's</P><P>4) Apply Secure Wipe to each of the LUNs</P><P>5) As we have a fully audited storage regime, the tapes will be destroyed in time, by professional services and verified.&nbsp; In the mean time, they are fully secured from beginning to end.</P><P>6)&nbsp; Audit records have to be kept for a minimum of 12 months after the above.</P><P>&nbsp;</P><P>Alternatives:&nbsp; Specialist software for securely wiping Virtual Machines.&nbsp;&nbsp;&nbsp; Costly.</P><P>&nbsp;</P><P>Or upgrade current set up and encrypt all Virtual Machines - encryption key held by VMware Administrator.</P><P>Destroy the key to ensure no key recovery or recovery of data.&nbsp;&nbsp; Costly in this case.</P><P>&nbsp;</P><P>Any other suggestions?</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P> Tue, 08 Oct 2019 18:56:44 GMT https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28791#M1842 Caute_cautim 2019-10-08T18:56:44Z https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28810#M1845 <P>My guidance would be...</P><P>&nbsp;</P><P>Follow your steps, and document your reasoning for why you think each step is required and sufficient for destroying.&nbsp; DSS doesn't give us many methods, just requirements.&nbsp; defending your interpretation of the requirements is easier if you remember why you did it.</P><P>&nbsp;</P><P>DSS compliance is more about making sound decisions and documentation of those decisions, from my experience.</P><BLOCKQUOTE><HR /><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/809125741">@Caute_cautim</a>&nbsp;wrote:<BR /><P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/783051913">@Steve-Wilme</a>Thanks for the response.&nbsp;&nbsp; If only as usual.</P><P>&nbsp;</P><P>However, working with the Storage guys, we have come up with a loose set of steps:</P><P>&nbsp;</P><P>1) Identity all Servers workloads and names and identify the LUNs (Logical Unit Numbers)</P><P>2) Delete Snaspshots</P><P>3) Delete VMDK's</P><P>4) Apply Secure Wipe to each of the LUNs</P><P>5) As we have a fully audited storage regime, the tapes will be destroyed in time, by professional services and verified.&nbsp; In the mean time, they are fully secured from beginning to end.</P><P>6)&nbsp; Audit records have to be kept for a minimum of 12 months after the above.</P><P>&nbsp;</P><P>Alternatives:&nbsp; Specialist software for securely wiping Virtual Machines.&nbsp;&nbsp;&nbsp; Costly.</P><P>&nbsp;</P><P>Or upgrade current set up and encrypt all Virtual Machines - encryption key held by VMware Administrator.</P><P>Destroy the key to ensure no key recovery or recovery of data.&nbsp;&nbsp; Costly in this case.</P><P>&nbsp;</P><P>Any other suggestions?</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><HR /></BLOCKQUOTE><P>&nbsp;</P> Wed, 09 Oct 2019 13:48:22 GMT https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28810#M1845 Huntington 2019-10-09T13:48:22Z https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28907#M1851 I like your thinking and wisdom, very good indeed.<BR /><BR />Thanks<BR /><BR />Cautim_cautim Sat, 12 Oct 2019 05:11:03 GMT https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/28907#M1851 Caute_cautim 2019-10-12T05:11:03Z https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/29129#M1863 <P>Of course, any time</P> Mon, 21 Oct 2019 13:00:20 GMT https://community.isc2.org/t5/Tech-Talk/PCI-DSS-and-secure-wiping-of-virtualised-environment-i-e-VMware/m-p/29129#M1863 Huntington 2019-10-21T13:00:20Z