HUMAN is Named a Leader and Earns Top Scores in Nine Criteria in the Forrester Wave™: Bot Management Software, Q3 2024
PCI DSS Compliance


Auto-discover browser scripts, streamline authorization and justification, assure integrity, and alert to header changes to comply with requirements 6.4.3 & 11.6.1
HUMAN-Compliance and Supple Chain-Hero Image
Human Security-Enterprise Logos-Sally Beauty@2x
Human Security-Hibbett logo@2x
Laybuy Logo_2x

Painless Browser Script Management

Deploy a single line of code to comply with PCI DSS 4—and deliver client-side security beyond compliance.
Human-Finance-Protect Without Impacting Traffic
Protect (6.4.3)
Auto-discover, justify, authorize, and assure script integrity—while surgically mitigating risk.
Human-Online Marketplaces-Detect API Vulnerabilities
Detect (11.6.1)

Detect changes to HTTP headers and the script contents of payment pages as received by the browser.

Human-Remain compliant@2x
Produce audit reports on-demand to demonstrate insight- and risk-based security and PCI DSS compliance.

Streamline Payment Page Script and Header Management

Painlessly protect your payment pages in compliance with requirements 6.4.3 and 11.6.1 of PCI DSS 4.

  • Auto-discover, maintain, and detect changes to the script inventory, payment pages, and HTTP headers
  • Enable a simple and automated method to authorize, justify, and assure the integrity of scripts
  • Generate audit reports on-demand to demonstrate continuous compliance with PCI DSS 4 to assessors
HUMAN-Compliance and Supple Chain-Mitigate Bad Script
HUMAN-Compliance and Supple Chain-Reduce Attack Surface

Secure Your Site Beyond PCI DSS Compliance

Get complete visibility and control of script behavior in real consumers’ browsers, real-time high-risk alerts, and in-depth script analysis.

  • Get details on all client-side 1st- and Nth- party scripts, including each script’s provenance, vulnerabilities, and cookies
  • Gain deep insight to scripts’ DOM, storage, and network actions, such as cardholder data access and risky-domain communication
  • Automatically enforce granular controls over client-side scripts, vendors, and actions

Maximize the Value of Browser Scripts

Enable your business to benefit from browser scripts while minimizing the risk to cardholder data and PCI DSS compliance.

  • Surgically block risky script actions to proactively mitigate script-based attacks without interrupting the value provided by vital scripts
  • Build invisible guardrails around client-side scripts and cardholder data without limiting developers’ and marketers’ agility
  • Seamlessly integrate with messaging, ticket management, SIEM, and collaboration tools that align to your workflows
HUMAN-Compliance and Supple Chain-Remain Compliant
Protect your applications with a purpose-built package.

PCI DSS Compliance is part of HUMAN’s Application Protection Package, a suite of solutions on the Human Defense Platform that secures applications from a range of cyberthreats.

Learn more

6.4.3 and 11.6.1 Become Mandatory on March 31, 2025

HUMAN secures payment pages against malicious scripts and helps organizations satisfy requirements 6.4.3 and 11.6.11 of PCI DSS 4.

HUMAN Secures Payment Page Browser Scripts

Supplement Retailer Simplifies Script Management

This Vitamin & Supplement Retailer was looking for a solution to help them comply with PCI DSS requirements 6.4.3 and 11.6.1 for payment page browser scripts.
Purple Line@2x

Simplifies PCI DSS compliance

with requirements 6.4.3 and 11.6.1
Purple Line@2x

Reduces effort

to manage scripts
Human-Purple Gradient Circle with Quotes@2x

“I’m very excited about this solution. Complying with PCI DSS would be a huge lift without something like this.”

CISO, Vitamin & Supplement Retailer

Human-Account Takeover Module-Purple Gradient Circle with Quotes@2x
“The solution pays for itself by reducing our risk from client-side data breaches and helping us avoid fines and the subsequent negative impact to our brand reputation.”
Top 5 Global Airline

Coalfire Reviews HUMAN for PCI DSS Compliance

Coalfire determined that HUMAN meets and often exceeds the intent and spirit of PCI DSS requirements 6.4.3 and 11.6.1, when properly employed in assessed environments.
Purple Line@2x


compliance activities
Purple Line@2x

Protect cardholder data

beyond PCI DSS baseline
Human Ceros Blade Integration PCI DSS - @2x

See How PCI DSS Compliance Works

Demo PCI DSS Compliance

Related Resources