PCI DSS Requirement 3.4 states that PAN must be rendered unreadable when stored. Which of the following may be used to meet this requirement?A . Hashing the entire PAN using strong cryptographyB . masking...
The PCI DSS Requirement most closely associated with “Logging” is ____________A . Requirement 8B . Requirement 11C . Requirement 10D . Requirement 2View AnswerAnswer: C
To consider Compensating Controls, one of the following must exist that precludes implementing the stated control: (Select ALL that apply)A . None of the othersB . Legitimate Technical ConstraintC . Documented Business ConstraintD ....
Maintain a policy that addresses information security for all personnel is the ________A . Requirement 11B . Requirement 12C . Requirement 10D . Requirement 9View AnswerAnswer: B
Requirement 3.5 requires document and implement procedures to protect keys used to secure stored cardholder data against disclose and misuse. This requirement applies to keys used to encrypt stored cardholder data, and also applies...
Information Supplements provided by the PCI SSC “supersede” or replace PCI DSS requirementsA . FalseB . TrueView AnswerAnswer: A
Use of a Qualified Integrator/Reeller (QIR):A . ensures PCI DSS complianceB . is required by PCI DSSC . replaces the need for PCI DSSD . is a good step towards PCI DSS complianceView AnswerAnswer:...
SELECT ALL THAT APPLY To be compliant with requirement 9.9 an updated list of all card-reading devices used in card-present transactions at the point of sale must be kept by June 30 2015 including...
Merchants involved with only card-not-present transactions that are completely outsourced to a PCI DSS complaint service provider may be eligible to use?A . SAQ C/VTB . SAQ BC . SAQ DD . SAQ AView...
An audit trail history should be available immediately for analysis within a minimum ofA . 30 daysB . 3 monthsC . 1 yearD . 6 monthsView AnswerAnswer: B
