Home > PCI Data Security Standard: 12-step program for compliance
Information Security magazine:
EMAIL THIS

PCI Data Security Standard: 12-step program for compliance

08 Jun 2006 | Information Security magazine

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

Unlike some government regulations, the PCI Data Security Standard is praised for its clarity. Here are the 12 basic requirements.

  1. Install and maintain a firewall configuration to protect data.
  2. Do not use vendor-supplied defaults for system passwords and other security parameters.
  3. Protect stored data.
  4. Encrypt the transmission of cardholder data and sensitive information across public networks.
  5. Use and regularly update antivirus software.
  6. Develop and maintain secure systems and applications.
  7. Restrict access to data by business need-to-know.
  8. Assign a unique ID to each person with computer access.
  9. Restrict physical access to cardholder data.
  10. Track and monitor all access to network resources and cardholder data.
  11. Regularly test security systems and processes.
  12. Maintain a policy that addresses information security.



BROWSE BY TAG
Security Audit, Compliance and Standards,   PCI Data Security Standard,   Infosec-Related Regs,   Compliance,   PCI Data Security Standard,   VIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
PCI Data Security Standard
PCI management: The case for Web application firewalls
MasterCard increases PCI compliance requirements for some merchants
PCI compliance requirement 1: Firewalls
PCI compliance requirement 2: Defaults
PCI compliance requirement 5: Antivirus
PCI compliance requirement 4: Encrypt transmissions
PCI compliance requirement 3: Protect data
PCI compliance requirement 6: Systems and applications
PCI compliance requirement 8: Unique IDs
PCI compliance requirement 10: Auditing

PCI Data Security Standard
Hashing for fun and profit: Demystifying encryption for PCI DSS
PCI Data Security Standard: Swiping back
PCI Data Security Standard: How to survive an audit
Data Protection, Encryption and the Payment Card Industry Data Security Standards (PCI DSS)
Checklist for meeting the PCI Data Security Standard
Meeting the PCI Data Security Standard requirements mitigates threats

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
PCI DSS (Payment Card Industry Data Security Standard )  (SearchSecurity.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary




Search Additional Security Research and Solutions
Find Security Channel Research for Resellers and Partners
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts