PCI Data Security Standard (PCI DSS)
The PCI DSS applies to all entities that store, process, and/or transmit cardholder
data. It covers technical and operational system components included in or connected
to cardholder data. If you accept or process payment cards, PCI DSS applies to you.
Sensitive Authentication Data
Merchants, service providers, and other
entities involved with payment card processing must never store sensitive
authentication data after authorization. This includes the 3- or 4- digit security code
printed on the front or back of a card (CVD), the data stored on a card's magnetic
stripe or chip (also called "Full Track Data") - and personal identification numbers (PIN)
entered by the cardholder.
Card Verification Data Codes (CVD)
3 or 4 digit code that further authenticates a not-present cardholder Visa-CVV2
MC- CVC2
Discover- CVD
JCB-CAV2
AmEx- CID
Requirement 1
Install and maintain a firewall configuration to protect cardholder data
Network devices in scope for Requirement 1
Firewalls and Routers- Routers connect traffic between networks, Firewalls
control the traffic between networks and within internal network
QIR Qualified Integrators & Resellers
Category | exam bundles |
Comments | 0 |
Rating | |
Sales | 0 |