Wednesday, 30 January 2013

Apigee paid version has ‘PCI and HIPAA compliance’

I was looking at Apigee pricing

and noticed this interesting security feature:


So the paid version has ‘PCI ad HIPAA compliance’ and the free version doesn’t :)

I wonder in practice what does that mean?

Is the free version insecure(r) by default? :)

I couldn’t really find any documentation on Apigee website that explained the difference.

There also doesn’t seem to be a lot of info about what they mean by PCI ad HIPAA compliance’ in the enterprise version.

Their Does your API need to be PCI-Compliant? presentation seems to be a bit more pragmatic: