Home > Storage > PowerScale (Isilon) > Product Documentation > Security and Compliance > Dell PowerScale OneFS: Security Considerations > Overview
This section provides guidelines for meeting PCI DSS version 4.0 compliance with the Dell PowerScale scale-out NAS platform. Across several verticals, OneFS provides storage for sensitive data. If the data is related to the Payment Card Industry (PCI), it must meet PCI DSS compliance, protecting sensitive cardholder data. The Payment Card Industry Data Security Standard (PCI DSS) provides a baseline of security measures and processes to protect sensitive financial data. The security processes and requirements span the entire IT infrastructure.
This document focuses specifically on the PCI DSS requirements for PowerScale OneFS, allowing administrators to achieve PCI DSS compliance. Throughout this document, the PCI DSS requirements are addressed regarding OneFS, as illustrated in the following figure.
For more information about the PCI DSS specification, see the PCI DSS Requirements and Security Assessment Procedures.
The PCI DSS standard does not provide a certification of compliance to a product. Rather, the PCI DSS standard provides the security measures for configuring a product to meet compliance. Once a product is configured per the PCI DSS standard, an IT environment is assessed for PCI DSS compliance. This paper explains how a PowerScale cluster is configured to meet PCI DSS compliance.
In addition to the configuration steps provided in this section and white paper, the Security Configuration Guide for the relevant OneFS release should be reviewed for additional security configuration and hardening considerations. The Security Configuration Guide is available for each OneFS release at PowerScale Info Hubs.