{"id":283,"date":"2011-04-18T15:44:54","date_gmt":"2011-04-18T14:44:54","guid":{"rendered":"http:\/\/www.solucominsight.fr\/?p=283"},"modified":"2019-12-31T12:27:52","modified_gmt":"2019-12-31T11:27:52","slug":"pci-dss-lexternalisation-est-elle-une-solution","status":"publish","type":"post","link":"https:\/\/www.riskinsight-wavestone.com\/en\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/","title":{"rendered":"PCI DSS : l\u2019externalisation est-elle une solution ?"},"content":{"rendered":"<p><em>[Tribune r\u00e9dig\u00e9e en collaboration avec Timol\u00e9on Tilmant et Ali Fawaz]<\/em><\/p>\n<p>Les cartes de paiement ont envahi notre quotidien,\u00a0que ce soit pour les achats en magasin comme pour la vente \u00e0 distance en particulier via internet Pour autant, cette g\u00e9n\u00e9ralisation de l\u2019utilisation de la carte de paiement a entrain\u00e9 une augmentation du montant total de la fraude de 9,8% par an en moyenne, pour atteindre 342,3M\u20ac en 2009*. Les grands \u00e9metteurs de cartes comme Visa et Mastercard\u00a0 se devaient de r\u00e9agir et de proposer de nouvelles mesures de s\u00e9curit\u00e9.<\/p>\n<h2>PCI DSS, un standard de s\u00e9curit\u00e9 exigeant\u2026<\/h2>\n<p>Pour contrer cette augmentation des fraudes, les acteurs majeurs des cartes de paiement ont d\u00e9fini le standard de s\u00e9curisation PCI DSS, dont les objectifs sont les suivants\u00a0:<\/p>\n<ul>\n<li>R\u00e9duire les risques de fuite de donn\u00e9es bancaires en renfor\u00e7ant et uniformisant \u00e0 l\u2019\u00e9chelle mondiale leur s\u00e9curisation<\/li>\n<li>En cas de fraude, d\u00e9placer les responsabilit\u00e9s des soci\u00e9t\u00e9s de cartes de paiement vers les garants de la certification PCI DSS (banques et soci\u00e9t\u00e9s d\u2019audit)<\/li>\n<\/ul>\n<p>Le standard adresse 12 th\u00e8mes classiques de la s\u00e9curit\u00e9. Mais il est particuli\u00e8rement exigeant\u00a0! Toutes les r\u00e8gles doivent \u00eatre appliqu\u00e9es et elles sont pr\u00e9cises. Durcissement des serveurs, revue quotidienne des logs, d\u00e9tection des points d\u2019acc\u00e8s wifi pirates, sont autant de chantiers complexes \u00e0 adresser dans le cadre d\u2019une mise en conformit\u00e9. D\u2019autant plus que leur application est contr\u00f4l\u00e9e \u00e0 travers des audits annuels pour les soci\u00e9t\u00e9s r\u00e9alisant plusieurs millions de transactions par an.<\/p>\n<h2>Quelle strat\u00e9gie de mise en conformit\u00e9\u00a0?<\/h2>\n<p>Au vu de cette complexit\u00e9, notre recommandation est d\u2019initier tout projet de mise en conformit\u00e9 PCI DSS par la r\u00e9duction du p\u00e9rim\u00e8tre d\u2019application du standard. Pour cela, plusieurs m\u00e9thodes se d\u00e9tachent\u00a0:<\/p>\n<ul>\n<li>Aligner le p\u00e9rim\u00e8tre applicatif avec les besoins m\u00e9tiers r\u00e9els. Cet exercice\u00a0 consiste \u00e0 supprimer les donn\u00e9es de cartes bancaires partout o\u00f9 leur pr\u00e9sence n\u2019est pas justifi\u00e9e par un besoin m\u00e9tier r\u00e9el.<\/li>\n<li>D\u00e9sensibiliser les donn\u00e9es de cartes bancaires. Il est possible de remplacer les donn\u00e9es bancaires par une donn\u00e9e non exploitable en cas de fraude &#8211;\u00a0 troncature, hash, ou identifiant unique (token) &#8211; diff\u00e9rente de la donn\u00e9e bancaire. Des \u00e9diteurs se positionnent sur la fourniture de solutions de d\u00e9sensibilisation.<\/li>\n<\/ul>\n<p>Cette \u00e9tape effectu\u00e9e, le p\u00e9rim\u00e8tre d\u2019application du standard PCI DSS se r\u00e9sume alors\u00a0aux applications restantes et aux services d\u2019infrastructures sous-jacents (r\u00e9seau, postes de travail concern\u00e9s, sauvegardes, base d\u2019identifiants uniques\u2026). C\u2019est a priori sur ce p\u00e9rim\u00e8tre que s\u2019appliqueront donc les exigences de PCI DSS.<\/p>\n<p>Sauf si\u2026\u00a0 la r\u00e9duction de p\u00e9rim\u00e8tre se poursuit \u00e0 travers l\u2019externalisation de ces ressources applicatives. Et cette externalisation pourrait m\u00eame servir \u00e0 am\u00e9liorer les services offerts\u2026<\/p>\n<h2>L\u2019externalisation\u00a0: une solution \u00e0 PCI DSS\u00a0?<\/h2>\n<p>Historiquement implant\u00e9s dans beaucoup d\u2019entreprises pour assurer un r\u00f4le d\u2019interm\u00e9diaire avec les banques, les PSP (<em>Payement Service Providers<\/em>) peuvent jouer un r\u00f4le majeur dans une strat\u00e9gie de mise en conformit\u00e9, dans la mesure o\u00f9 toutes leurs offres sont propos\u00e9es en standard sur des environnements enti\u00e8rement certifi\u00e9s PCI DSS.<\/p>\n<p>En particulier, les PSP sont aujourd\u2019hui en mesure de proposer l\u2019externalisation de tous les composants de la cha\u00eene de liaison paiement par internet ou par t\u00e9l\u00e9phone\u00a0: collecte des donn\u00e9es, demandes d\u2019autorisation et de paiement, contr\u00f4les anti-fraude avanc\u00e9s\u2026<\/p>\n<p>Et l\u2019externalisation peut aller encore plus loin\u00a0! Les PSP proposent dor\u00e9navant des tables de correspondance \u00ab\u00a0tokenizer\u00a0\u00bb facilitant la d\u00e9sensibilisation des donn\u00e9es carte de paiement. Lors de la collecte de donn\u00e9es, un identifiant unique, personnalisable, est renvoy\u00e9 \u00e0 l\u2019entreprise et peut donc circuler dans le SI sans aucune contrainte vis-\u00e0-vis de la norme PCI DSS.<\/p>\n<p>L\u2019externalisation permet ainsi de r\u00e9duire de mani\u00e8re cons\u00e9quente le p\u00e9rim\u00e8tre applicatif, mais attention\u2026 ce n\u2019est pas la solution ultime pour \u00eatre conforme \u00e0 PCI DSS. \u00a0Certaines populations conservent souvent le besoin d\u2019acc\u00e9der au num\u00e9ro de carte depuis leur poste de travail, pour des raisons r\u00e9glementaires, entre autres. Nous pouvons par exemple citer les services de lutte anti-fraude ou les t\u00e9l\u00e9conseillers, dont les terminaux devront sans doute rester dans le p\u00e9rim\u00e8tre PCI DSS. Il est donc difficile de penser qu\u2019aucun composant du SI ne manipulera de donn\u00e9es cartes surtout dans une grande entreprise.<\/p>\n<p>Mais bien plus qu\u2019un simple levier de mise en conformit\u00e9 PCI DSS, un projet d\u2019externalisation peut devenir strat\u00e9gique pour l\u2019entreprise\u00a0en lui permettant de d\u00e9velopper de nouveaux moyens de paiements (ex\u00a0: cartes cadeaux), de nouveaux march\u00e9s internationaux (facilit\u00e9s de connexions aux acqu\u00e9reurs \u00e9trangers) ou de nouvelles fonctionnalit\u00e9s (ex\u00a0: paiement one-click sans renseignement des donn\u00e9es CB). Le recours \u00e0 ces acteurs peut aider \u00e0 la conformit\u00e9 mais aussi faciliter de nouveaux usages.<\/p>\n<p><em>*Ces statistiques sont issues du rapport d\u2019activit\u00e9 annuel 2009 de l\u2019Observatoire de la s\u00e9curit\u00e9 des cartes de paiement publi\u00e9 en Juillet 2010<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[Tribune r\u00e9dig\u00e9e en collaboration avec Timol\u00e9on Tilmant et Ali Fawaz] Les cartes de paiement ont envahi notre quotidien,\u00a0que ce soit pour les achats en magasin comme pour la vente \u00e0 distance en particulier via internet Pour autant, cette g\u00e9n\u00e9ralisation de&#8230;<\/p>\n","protected":false},"author":226,"featured_media":6343,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"page-templates\/tmpl-one.php","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[3229,36],"tags":[112,57,3307,111],"coauthors":[1458],"class_list":["post-283","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyber-for-financial-services","category-cybersecurity-digital-trust","tag-donnee-bancaire","tag-externalisation","tag-financial-services-cyber","tag-pci-dss"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>PCI DSS : l\u2019externalisation est-elle une solution ? - RiskInsight<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"PCI DSS : l\u2019externalisation est-elle une solution ? - RiskInsight\" \/>\n<meta property=\"og:description\" content=\"[Tribune r\u00e9dig\u00e9e en collaboration avec Timol\u00e9on Tilmant et Ali Fawaz] Les cartes de paiement ont envahi notre quotidien,\u00a0que ce soit pour les achats en magasin comme pour la vente \u00e0 distance en particulier via internet Pour autant, cette g\u00e9n\u00e9ralisation de...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/\" \/>\n<meta property=\"og:site_name\" content=\"RiskInsight\" \/>\n<meta property=\"article:published_time\" content=\"2011-04-18T14:44:54+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2019-12-31T11:27:52+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"573\" \/>\n\t<meta property=\"og:image:height\" content=\"214\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"SolucomINSIGHT\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"SolucomINSIGHT\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/\"},\"author\":{\"name\":\"SolucomINSIGHT\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/db6adc4938259b49b2bfa661026ca1f5\"},\"headline\":\"PCI DSS : l\u2019externalisation est-elle une solution ?\",\"datePublished\":\"2011-04-18T14:44:54+00:00\",\"dateModified\":\"2019-12-31T11:27:52+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/\"},\"wordCount\":883,\"publisher\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\",\"keywords\":[\"donn\u00e9e bancaire\",\"externalisation\",\"financial services cyber\",\"PCI DSS\"],\"articleSection\":[\"Cyber for Financial Services\",\"Cybersecurity &amp; Digital Trust\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/\",\"name\":\"PCI DSS : l\u2019externalisation est-elle une solution ? - RiskInsight\",\"isPartOf\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\",\"datePublished\":\"2011-04-18T14:44:54+00:00\",\"dateModified\":\"2019-12-31T11:27:52+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#primaryimage\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\",\"contentUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg\",\"width\":573,\"height\":214},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"PCI DSS : l\u2019externalisation est-elle une solution ?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#website\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\",\"name\":\"RiskInsight\",\"description\":\"The cybersecurity &amp; digital trust blog by Wavestone&#039;s consultants\",\"publisher\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.riskinsight-wavestone.com\/en\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\",\"name\":\"Wavestone\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png\",\"contentUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png\",\"width\":50,\"height\":50,\"caption\":\"Wavestone\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/db6adc4938259b49b2bfa661026ca1f5\",\"name\":\"SolucomINSIGHT\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/author\/solucominsight\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"PCI DSS : l\u2019externalisation est-elle une solution ? - RiskInsight","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/","og_locale":"en_US","og_type":"article","og_title":"PCI DSS : l\u2019externalisation est-elle une solution ? - RiskInsight","og_description":"[Tribune r\u00e9dig\u00e9e en collaboration avec Timol\u00e9on Tilmant et Ali Fawaz] Les cartes de paiement ont envahi notre quotidien,\u00a0que ce soit pour les achats en magasin comme pour la vente \u00e0 distance en particulier via internet Pour autant, cette g\u00e9n\u00e9ralisation de...","og_url":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/","og_site_name":"RiskInsight","article_published_time":"2011-04-18T14:44:54+00:00","article_modified_time":"2019-12-31T11:27:52+00:00","og_image":[{"width":573,"height":214,"url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","type":"image\/jpeg"}],"author":"SolucomINSIGHT","twitter_misc":{"Written by":"SolucomINSIGHT","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#article","isPartOf":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/"},"author":{"name":"SolucomINSIGHT","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/db6adc4938259b49b2bfa661026ca1f5"},"headline":"PCI DSS : l\u2019externalisation est-elle une solution ?","datePublished":"2011-04-18T14:44:54+00:00","dateModified":"2019-12-31T11:27:52+00:00","mainEntityOfPage":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/"},"wordCount":883,"publisher":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#primaryimage"},"thumbnailUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","keywords":["donn\u00e9e bancaire","externalisation","financial services cyber","PCI DSS"],"articleSection":["Cyber for Financial Services","Cybersecurity &amp; Digital Trust"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/","url":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/","name":"PCI DSS : l\u2019externalisation est-elle une solution ? - RiskInsight","isPartOf":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#primaryimage"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#primaryimage"},"thumbnailUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","datePublished":"2011-04-18T14:44:54+00:00","dateModified":"2019-12-31T11:27:52+00:00","breadcrumb":{"@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#primaryimage","url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","contentUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2012\/10\/Cybercriminalite.jpg","width":573,"height":214},{"@type":"BreadcrumbList","@id":"https:\/\/www.riskinsight-wavestone.com\/2011\/04\/pci-dss-lexternalisation-est-elle-une-solution\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.riskinsight-wavestone.com\/en\/"},{"@type":"ListItem","position":2,"name":"PCI DSS : l\u2019externalisation est-elle une solution ?"}]},{"@type":"WebSite","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#website","url":"https:\/\/www.riskinsight-wavestone.com\/en\/","name":"RiskInsight","description":"The cybersecurity &amp; digital trust blog by Wavestone&#039;s consultants","publisher":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.riskinsight-wavestone.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization","name":"Wavestone","url":"https:\/\/www.riskinsight-wavestone.com\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png","contentUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png","width":50,"height":50,"caption":"Wavestone"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/db6adc4938259b49b2bfa661026ca1f5","name":"SolucomINSIGHT","url":"https:\/\/www.riskinsight-wavestone.com\/en\/author\/solucominsight\/"}]}},"_links":{"self":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/283","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/users\/226"}],"replies":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/comments?post=283"}],"version-history":[{"count":7,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/283\/revisions"}],"predecessor-version":[{"id":6546,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/283\/revisions\/6546"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/media\/6343"}],"wp:attachment":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/media?parent=283"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/categories?post=283"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/tags?post=283"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/coauthors?post=283"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}