Managing PII Data With Transaction Surveillance

The TransactionException (TRANXCPT) and TransactionDetail (TRANDET) records contain sensitive data such as PAN, CardHolderMemberNumber, FromAccountNumber, and ToAccountNumber. This type of data is usually maintained with restricted access.

The business groups within an organization that will use Transaction Surveillance will normally already have access to this information. However, other business groups that also use Prognosis, such as Helpdesk and operations, probably should not be able to access to these details.

At the present time the security solution for Transaction Surveillance involves two installations of Prognosis;

  • One installation has a license for Transaction Surveillance and is made available to all approved operators. Prognosis security controls which users can connect to the Transaction surveillance system.

  • The other installation is not licensed for Transaction Surveillance and is made available to all other operators.

To assist in supporting this requirement, there is an option provided in the HPE NonStop Installation command line to choose which Prognosis is to be installed.

Use to install Prognosis without Transaction Surveillance:

RUN UNPACK ENABLE BASE

Use to install Prognosis with only Transaction Surveillance enabled:

RUN UNPACK ENABLE TSV

For institutions, particularly smaller sites, that are not as concerned with security, a single copy of Prognosis that includes Transaction Surveillance can be run:

RUN UNPACK ENABLE ALL
Provide feedback on this article