My Oracle Support Banner

Credit Card Numbers Are Visible In Dm_fusa (and Possibly CM) Memory Dumps (Doc ID 2598671.1)

Last updated on OCTOBER 16, 2019

Applies to:

Oracle Communications Billing and Revenue Management - Version 7.5.0.21.0 and later
Information in this document applies to any platform.

Goal

Is the access to credit card numbers from the memory dumps considered as a Payment Card Industry (PCI) violation?

e.g. Using various utilities and (non-root) capabilities to analyze the memory and stack of running dm_fusa processes are able to see credit card #s - for online auth/verify requests.

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
 Is the access to credit card numbers from the memory dumps considered as a Payment Card Industry (PCI) violation?
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.