Client-Side Protection & Compliance

Defend your site from client-side threats. Ease compliance with PCI DSS v4.0

Client-Side Protection & Compliance

Defend your site from client-side threats. Ease compliance with PCI DSS v4.0

Strengthen your web page integrity

Client-Side Protection & Compliance helps protect against end-user data exfiltration and shield websites from JavaScript threats. It analyzes script behavior in real time, provides actionable insights in a single dashboard view, and delivers alerts to mitigate harmful script activity. Designed for PCI DSS v4.0, the solution helps businesses meet new script security requirements and safeguards against client-side attacks.

Root out the insidious client-side threats you can’t see

Accelerate PCI DSS v4.0 compliance

Streamline workflows for PCI DSS v4.0 script security requirements 6.4.3 and 11.6.1.

Discover attacks in real time with a proven solution

Achieve comprehensive detection and defense against client-side attacks. Mitigate attacks with one click.

Reveal malicious code and vulnerabilities

Get real-time visibility into the cyberthreats and vulnerabilities within all your scripts.

How Client-Side Protection & Compliance works

Set Up

Inject simple scripts into each monitored page without meaningfully impacting performance.

Assess

Monitor and assess script activity from the browser while machine learning techniques analyze the risk of unauthorized action.

Alert

Get real-time alerts, with detailed information about mitigation, if an active threat or attack is found.

Mitigate

Immediately restrict malicious scripts from accessing and exfiltrating sensitive data on protected pages with one click.

Meet your PCI DSS v4.0 mandates

Get an independent security assessor’s validation of the ways Akamai can help you meet key requirements in PCI DSS v4.0.

Features

  • Behavior detection and protection allows monitoring of scripts in real time and protects against client-side attacks
  • Streamlined PCI DSS v4.0 workflows
  • Flexible deployment at the edge or from origin

 

  • Vulnerability-focused policy continuously analyzes URLs for Common Vulnerabilities and Exposures (CVE)
  • Create and manage policies for zero-day vulnerabilities and recurring threats without exposing sensitive data

  • User-friendly reporting capabilities including dashboards to see script data at a glance and detailed incident reports
  • Prioritized real-time security alerts with risk scores and insights on how to mitigate attacks

Client-Side Protection & Compliance use cases

PCI DSS v4.0 Compliance

Comply with PCI DSS v4.0

Compliance and auditing tasks can be a massive burden for security teams. Client-Side Protection & Compliance addresses the new client-side security requirements outlined in PCI DSS v4.0, which is scheduled to take effect in March 2025. With one simple tool, you can inventory, justify, and monitor all scripts observed on protected payment pages — with actionable alerts that notify security teams on unauthorized solution tampering and suspicious script behavior in real time.

Frequently Asked Questions (FAQ)

Client-Side Protection & Compliance does not collect PII data, input/form data, innerHTML (strings/texts), European Union General Data Protection Regulation–related data, or payment data (PCI DSS).

Resources

A Walk on the Client Side Infographic

Get a visual breakdown of the dangers of web skimming and third-party JavaScript — and how PCI DSS v4.0 is addressing it.

PCI DSS v4.0 JavaScript Security Checklist

Read about upcoming requirements in PCI DSS v4.0 and how Client-Side Protection & Compliance can help organizations meet them.

A person with black glass is shown with their face lit by the light of a computer screen

Have questions?

Solving problems is what we live for. Reach out — even if you’re not sure what your next step is. You’ll hear back from an expert today.

Thanks for your request! An Akamai expert will reach out soon.