PCI Requirement 10.4.3 – Time Settings Are Received from Industry-Accepted Time Sources
Industry-Accepted Time Sources To ensure that critical system clocks and time are consistent and correct, PCI Requirement 10.4.3 requires that time settings are received from industry-accepted time sources. This could be from something like the U.S. Navy, NASA, Google, or other organizations who use GPS for time synchronizations. The testing procedures for PCI Requirement 10.4.3 requires assessors to examine systems configurations to verify that the time servers accept time…