PCI DSS
Payment card industry data security standard
Build and Maintain a Secure Network
- 1. Requirement: Install and maintain a firewall configuration to protect cardholder data
- 2. Requirement: Do not use vendor-supplied defaults for system passwords and other security parameters
Protect Cardholder Data
- 3. Requirement: Use and regularly update anti-virus software
- 4. Requirement: Develop and maintain secure systems and applications
Implement Strong Access Control Measures
- 5. Requirement: Používat a pravidelně aktualizovat antivirové software nebo programy
- 6. Requirement: Vytvořit a udržovat bezpečnostní systémy a aplikace
Implementovat odolná opatření pro kontrolu přístupu
- 7. Requirement: Restrict access to cardholder data by business need-to-know
- 8. Requirement: Assign a unique ID to each person with computer access
- 9. Requirement: Restrict physical access to cardholder data
Regularly Monitor and Test Networks
- 10. Requirement: Track and monitor all access to network resources and cardholder data
- 11. Requirement: Regularly test security systems and processes
Maintain an Information Security Policy
- 12. Requirement: Maintain a policy that addresses information security