South Africa Finance

Aug 31 2018

What is PCI DSS 12 requirements? Definition from, pci firewall.#Pci #firewall


#

PCI DSS 12 requirements

Pci firewall

  • Share this item with your network:

PCI DSS 12 requirements is a set of security controls that businesses are required to implement to protect credit card data and comply with the Payment Card Industry Data Security Standard (PCI DSS). The requirements were developed and are maintained by the Payment Card Industry (PCI) Security Standards Council.

Pci firewall

Pci firewall Pci firewall

Download Now: NGFW Vendor Reviews and Ratings

Are you making NGFW purchase decisions based on need, risk and future growth? Inside this guide discover 6 criteria for buying a NGFW, survey data on top firewall trends in 2017, peer reviews on firewall vendors in the market today and more.

By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.

You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

Any organization that handles payment cards, including debit and credit cards, must meet the 12 requirements directly or through a compensating control. However, compensating controls are not always allowed and must be approved on a case-by-case basis by a PCI QSA. Failure to meet the PCI DSS 12 requirements may result in fines or termination of credit card processing privileges.

The PCI DSS 12 requirements are as follows:

1. Install and maintain a firewall configuration to protect cardholder data.

2. Do not use vendor-supplied defaults for system passwords and other security parameters.

4. Encrypt transmission of cardholder data across open, public networks.

6. Develop and maintain secure systems and applications.

7. Restrict access to cardholder data by business need-to-know.

8. Assign a unique ID to each person with computer access.

9. Restrict physical access to cardholder data.

10. Track and monitor all access to network resources and cardholder data.

11. Regularly test security systems and processes.

12. Maintain a policy that addresses information security.

Continue Reading About PCI DSS 12 requirements

Related Terms

Dig Deeper on PCI Data Security Standard

Can a PCI Internal Security Assessor validate level 1 merchants?
How does a PCI ISA help enterprise security and compliance?
Do PCI compliance standards matter when merchants sell off-site?
Why is the FTC interested in PCI assessments?
PCI DSS 3.2 focuses on encryption and multifactor authentication
PCI DSS 3.2 marks the end of major updates to the standard
PCI DSS 3.1 deadline for TLS migration pushed back
As EMV adoption lags, industry remains optimistic
PCI DSS 3.2 marks the end of an era, not of the standard
strong cryptography
PCI gap assessment
PCI DSS merchant levels
How does a PCI ISA help enterprise security and compliance?
Do PCI compliance standards matter when merchants sell off-site?
Why is the FTC interested in PCI assessments?
How can vulnerability scanning tools help with PCI DSS compliance?
Can a PCI Internal Security Assessor validate level 1 merchants?
Is mobile payment security regulated enough by PCI DSS?
What advice does the PCI Special Interest Group have for compliance?
Can video surveillance improve PCI DSS 3.0 compliance?
Why PCI non-compliance is a problem for many
Beyond PCI: Out-of-band security tips for credit card data protection
How will Shellshock affect PCI DSS audits for enterprises?
What advice does the PCI Special Interest Group have for compliance?

Content

Find more PRO+ content and other member only offers, here.


Written by admin


Leave a Reply

Your email address will not be published. Required fields are marked *