click below
click below
Normal Size Small Size show me how
6 Goals, 12 Reqs-PCI
PCI DSS - 6 Goals, Twelve Requirements.
Term | Definition |
---|---|
Build and Maintain a Secure Network and Systems - Requirements | 1) Install and maintain a firewall configuration to protect cardholder data. 2) Do not use vendor-supplied defaults for system passwords and other security parameters. |
Protect Cardholder Data | 1) Protect Stored Cardholder Data 2) Encrypt transmission of cardholder data across open, public networks |
Maintain a Vulnerability Management Program | 1) Protect all systems against malware and regularly update anti-virus software or programs. 2) Develop and maintain secure systems and applications |
Implement Strong Access Control Measures | 1) Restrict Access to cardholder data by business need-to-know 2) Identify and authenticate access to system components 3) Restrict physical access to cardholder data |
Regular Monitor and Test Networks. | 1) Track and monitor all access to network resources and cardholder data 2) Regularly test security systems and processes |
Maintain an Information Security Policy | 1) Maintain a policy that addresses information security for all personnel |