Home > PCI Data Security Standard: 12-step program for compliance
Information Security magazine:
EMAIL THIS LICENSING & REPRINTS

PCI Data Security Standard: 12-step program for compliance

08 Jun 2006 | Information Security magazine

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

Unlike some government regulations, the PCI Data Security Standard is praised for its clarity. Here are the 12 basic requirements.

  1. Install and maintain a firewall configuration to protect data.
  2. Do not use vendor-supplied defaults for system passwords and other security parameters.
  3. Protect stored data.
  4. Encrypt the transmission of cardholder data and sensitive information across public networks.
  5. Use and regularly update antivirus software.
  6. Develop and maintain secure systems and applications.
  7. Restrict access to data by business need-to-know.
  8. Assign a unique ID to each person with computer access.
  9. Restrict physical access to cardholder data.
  10. Track and monitor all access to network resources and cardholder data.
  11. Regularly test security systems and processes.
  12. Maintain a policy that addresses information security.



Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
PCI Data Security Standard
Security of customer data, IP sustains security budgets
PCI version 1.2 clarifications: How to get an early start on compliance audits
Version 1.2 of Payment Card Industry (PCI) Data Security Standard answers questions, raises others
Security visualization helps make log files work
The Little Black Book of Computer Security, 2nd Edition
Data breach discovery, disclosure outpaces 2007
PCI groups to focus on wireless, pre-authorization changes
PCI DSS 1.2 clarifies wireless, antivirus use
Compliance recycling: Combining compliance efforts to manage PCI DSS
PCI Requirement 6.6 has merchants gearing up

PCI Data Security Standard
Hashing for fun and profit: Demystifying encryption for PCI DSS
PCI Data Security Standard: Swiping back
PCI Data Security Standard: How to survive an audit
Data Protection, Encryption and the Payment Card Industry Data Security Standards (PCI DSS)
Checklist for meeting the PCI Data Security Standard
Meeting the PCI Data Security Standard requirements mitigates threats

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
PCI DSS (Payment Card Industry Data Security Standard )  (SearchSecurity.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary




Search Additional Security Research and Solutions
Find Security Channel Research for Resellers and Partners
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Advanced Search | Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2003 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts