Setting up and using Simple PAN Detection
When Simple PAN Detection is selected, Reflection matches a credit card number sequence (a 13- 16 digit number).
The credit card character sequences can also include whitespace and hyphen characters as digit grouping separators.
When to use Simple PAN Detection
Use Simple PAN Detection when your application meets all of the following conditions:
All of the credit card account numbers in your host applications are displayed and entered in a "contiguous" fashion. In other words, the PANs always appear or are always entered as a single continuous string (e.g. 1111-1111-1111-1111, 2222 2222 2222 2222, 444444444444444 etc.).
All of the account numbers that need to be redacted are from one or more of the following issuers: Visa, MasterCard, American Express, Discover, Diner's Club, Carte Blanche, Voyager, JCB, or enRoute.
If data in your application are displayed or entered in a noncontiguous fashion or you need to detect other card issuers, use the Reflection PAN Detection option and enter additional custom patterns for those issuers in the Custom Detection Rules table, or use privacy filters to specify a custom pattern.
Advantages of Simple PAN Detection
This method requires no additional configuration and should be suitable for most situations.
Considerations for Simple PAN Detection
Although simple PAN Detection is easy to set up and use, there are a few items to consider when using this method:
This method works only with the major credit card issuers noted above. (In some cases, privacy filters can be used in conjunction with this method to add additional issuers.)
It is possible to get false positives in entry fields where large numbers of digits are entered consecutively and where there are no non-digit separator characters delimiting the overall sequence of digits.
How to set up Simple PAN Detection
Use the Information privacy dialog box to set up Simple PAN Redaction.
To set up Simple PAN redaction
From the Reflection File menu or the Reflection button (if using the Office 2007 Look and Feel), select Reflection Workspace Settings.
Under Trust Center, click Set Up Information Privacy.
On the Information Privacy dialog box, select Enable Redaction and then select Simple PAN Detection.
To "lock down" these settings, see Control Access to Lock Down Settings and Controls.
To package this file for deployment, see Package Configuration Files.
Privacy filter settings are saved in the
PrivacyFilters.xmlfile. All other Information for Privacy settings is saved in the
PCIDSS.settingsfile. You can deploy these files to one of the following locations:
Location for a single user:
[AppDataFolder]is the full path of the Roaming folder for the current user. The default is
Location for all users:
[CommonAppDataFolder]is the full path to application data for all users. The default is