pci_dss_v1-2

pci_dss_v1-2 - Payment Card Industry (PCI) Data Security...

Info iconThis preview shows pages 1–4. Sign up to view the full content.

View Full Document Right Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
This is the end of the preview. Sign up to access the rest of the document.

Unformatted text preview: Payment Card Industry (PCI) Data Security Standard Requirements and Security Assessment Procedures Version 1.2.1 July 2009 Document Changes Date Version Description Pages Octobe r 2008 1.2 To introduce PCI DSS v1.2 as “PCI DSS Requirements and Security Assessment Procedures,” eliminating redundancy between documents, and make both general and specific changes from PCI DSS Security Audit Procedures v1.1. For complete information, see PCI Data Security Standard Summary of Changes from PCI DSS Version 1.1 to 1.2. July 2009 1.2.1 Add sentence that was incorrectly deleted between PCI DSS v1.1 and v1.2. 5 Correct “then” to “than” in testing procedures 6.3.7.a and 6.3.7.b. 32 Remove grayed-out marking for “in place” and “not in place” columns in testing procedure 6.5.b. 33 For Compensating Controls Worksheet – Completed Example, correct wording at top of page to say “Use this worksheet to define compensating controls for any requirement noted as ‘in place’ via compensating controls.” 64 PCI DSS Requirements and Security Assessment Procedures, v1.2.1 July 2009 Copyright 2008 PCI Security Standards Council LLC Page 1 Table of Contents Document Changes.............................................................................................................................................................................1 Introduction and PCI Data Security Standard Overview...................................................................................................................4 PCI DSS Applicability Information......................................................................................................................................................5 Scope of Assessment for Compliance with PCI DSS Requirements...............................................................................................6 Network Segmentation...........................................................................................................................................................................................6 Wireless..................................................................................................................................................................................................................7 Third Parties/Outsourcing.......................................................................................................................................................................................7 Sampling of Business Facilities and System Components.....................................................................................................................................7 Compensating Controls..........................................................................................................................................................................................8 Instructions and Content for Report on Compliance........................................................................................................................9Instructions and Content for Report on Compliance....
View Full Document

This document was uploaded on 12/05/2009.

Page1 / 74

pci_dss_v1-2 - Payment Card Industry (PCI) Data Security...

This preview shows document pages 1 - 4. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online