Re: Luhn Check to Retrieve card details
I think *youre* misunderstanding here. Storing the full PAN is perfectly acceptable within the PCI DSS. Storing it unprotected is not however. Protection can be provided through hashing, encryption, tokenisation, etc. Masking the middle digits essentially makes the information useless for fraud, as it is no longer cardholder data.
Biting the hand that feeds IT
