PCI Requirement 8.8 – Ensure Policies and Procedures for Identification and Authentication are Documented, in Use, and Known to All Affected Parties
by Randy Bartels / December 21st, 2017
Identification and Authentication Policies and Procedures PCI Requirement 8 focuses on two actions: identify and authenticate. These actions are critical to protecting your…
PCI Requirement 8.7 – Restrict All Access to Any Database Containing Cardholder Data
by Randy Bartels / December 21st, 2017
Database Access PCI Requirement 8.7 requires that you restrict all access to any database containing cardholder data and access is restricted as follows:…
PCI Requirement 8.5.1 – Additional Requirement for Service Providers Only:
by Randy Bartels / December 21st, 2017
Service Providers with Remote Access to Customer Premises Must Use Unique Authentication Credential for Each Customer Multiple Customers, Multiple Authentication Credentials The PCI DSS…
PCI Requirement 8.5 – Do Not Use Group, Shared, or Generic IDs, Passwords, or Other Authentication Methods
by Randy Bartels / December 21st, 2017
Do Not Use Group, Shared, or Generic Authentication Methods PCI Requirement 8.5 cautions, “Do not use group, shared, or generic IDs, passwords, or…