Payment Card Industry Data Security Standard
Build and Maintain a Secure NetworkRequirement
1: Install and maintain a firewall configuration to protect data Requirement
2: Do not use vendor-supplied defaults for system passwords and other security parameters Protect Cardholder Data Requirement
3: Protect stored dataRequirement
4: Encrypt transmission of cardholder data and sensitive information across public networksMaintain a Vulnerability Management Program Requirement
5: Use and regularly update anti-virus softwareRequirement
6: Develop and maintain secure systems and applicationsImplement Strong Access Control Measures Requirement
7: Restrict access to data by business need-to-knowRequirement
8: Assign a unique ID to each person with computer accessRequirement
9: Restrict physical access to cardholder dataRegularly Monitor and Test NetworksRequirement
10: Track and monitor all access to network resources and cardholder dataRequirement
11: Regularly test security systems and processes.Maintain an Information Security PolicyRequirement
12: Maintain a policy that addresses information
Bookmarks