PCI Requirement 10.5.1 – Limit Viewing of Audit Trails to Those with a Job-Related Need

by Randy Bartels / December 20, 2022

 Policy of Least Privileges Protection of audit trails requires strong access controls; once again, the policy of least privileges comes into play. Audit trails contain sensitive information that only some members of an organization should have access to. This is why PCI Requirement 10.5.1 requires organizations to limit viewing of audit trails to those with a job-related need. It’s important to note that the PCI DSS doesn’t state that…

PCI Requirement 10.5 – Secure Audit Trails so They Cannot Be Altered

by Randy Bartels / December 20, 2022

 Protecting the Integrity of Audit Trails Now that you’ve complied with other PCI Requirement 10 standards and have established audit trails, that information needs to be secured. Audit trails contain all the correct information about events and incidents, so malicious individuals will often seek to alter audit trails to hide their actions. PCI Requirement 10.5 requires that you secure audit trails so they cannot be altered. Your organization must…

PCI Requirement 10.4.3 – Time Settings Are Received from Industry-Accepted Time Sources

by Randy Bartels / December 20, 2022

 Industry-Accepted Time Sources To ensure that critical system clocks and time are consistent and correct, PCI Requirement 10.4.3 requires that time settings are received from industry-accepted time sources. This could be from something like the U.S. Navy, NASA, Google, or other organizations who use GPS for time synchronizations. The testing procedures for PCI Requirement 10.4.3 requires assessors to examine systems configurations to verify that the time servers accept time…

PCI Requirement 10.4.2 – Time Data is Protected

by Randy Bartels / December 20, 2022

 Protecting the Integrity of Time Data PCI Requirement 10.4.2 requires that through time-synchronization technology, time data is protected. Organizations must implement controls to protect time data from unauthorized access or modification. Why? Malicious attackers may seek to modify time data to hide what actions they’ve taken over a period of time. The testing procedures for PCI Requirement 10.4.2 requires that assessors examine system configurations and time-synchronization settings to verify…

PCI Requirement 10.4.1 – Critical Systems Have the Correct and Consistent Time

by Randy Bartels / December 20, 2022

 Chronological Events PCI Requirement 10.4.1 requires that critical systems have the correct and consistent time so that chronological events can be recreated. Without proper and consistent synchronization, it’s almost impossible to compare logs to systems and determine an exact sequence of events. Compliance with PCI Requirement 10.4.1 is crucial during incident response. There are several testing procedures to verify compliance with PCI Requirement 10.4.1. The PCI DSS states that…