About the Implement Strong Access Control Measures category
|
|
0
|
43
|
January 23, 2023
|
[PCI DSS 1.x] 8.3 Implement two-factor authentication for remote access to the network by employees, administrato
|
|
3
|
16499
|
January 13, 2014
|
[PCI DSS 1.x] 9.1 Use appropriate facility entry controls to limit and monitor physical access to systems that sto
|
|
1
|
12584
|
April 25, 2011
|
[PCI DSS 1.x] 9.3 Make sure all visitors are handled as follows: (9.3.1 to 9.3.3)
|
|
1
|
3333
|
February 23, 2011
|
[PCI DSS 1.x] 9.4 Use a visitor log to maintain a physical audit trail of visitor activity. Retain this log for a
|
|
1
|
3913
|
February 23, 2011
|
[PCI DSS 1.x] 8.2 In addition to assigning a unique ID, employ at least one of the following methods to authentica
|
|
1
|
4421
|
February 17, 2011
|
[PCI DSS 1.x] 9.1.1 Use cameras to monitor sensitive areas. Audit collected data and correlate with other entries.
|
|
4
|
6072
|
July 29, 2010
|
[PCI DSS 1.x] 8.5.8 Do not use group, shared, or generic accounts and passwords
|
|
1
|
6432
|
February 12, 2008
|
[PCI DSS 1.x] 9.10.2 Purge, degauss, shred, or otherwise destroy electronic media so that cardholder data cannot b
|
|
0
|
5616
|
March 18, 2007
|
[PCI DSS 1.x] 9.10.1 Cross-cut shred, incinerate, or pulp hardcopy materials
|
|
0
|
4085
|
March 18, 2007
|
[PCI DSS 1.x] 9.10 Destroy media containing cardholder data when it is no longer needed for business or legal reas
|
|
0
|
3040
|
March 18, 2007
|
[PCI DSS 1.x] 9.9.1 Properly inventory all media and make sure it is securely stored.
|
|
0
|
2689
|
March 18, 2007
|
[PCI DSS 1.x] 9.9 Maintain strict control over the storage and accessibility of media that contains cardholder dat
|
|
0
|
3114
|
March 18, 2007
|
[PCI DSS 1.x] 9.8 Ensure management approves any and all media that is moved from a secured area (especially when
|
|
0
|
2610
|
March 18, 2007
|
[PCI DSS 1.x] 9.7.2 Send the media by secured courier or other delivery method that can be accurately tracked
|
|
0
|
3547
|
March 18, 2007
|
[PCI DSS 1.x] 9.7.1 Classify the media so it can be identified as confidential
|
|
0
|
2843
|
March 18, 2007
|
[PCI DSS 1.x] 9.7 Maintain strict control over the internal or external distribution of any kind of media that con
|
|
0
|
3613
|
March 18, 2007
|
[PCI DSS 1.x] 9.6 Physically secure all paper and electronic media (including computers, electronic media, network
|
|
0
|
3475
|
March 18, 2007
|
[PCI DSS 1.x] 9.5 Store media back-ups in a secure location, preferably an off-site facility, such as an alternate
|
|
0
|
3106
|
March 18, 2007
|
[PCI DSS 1.x] 9.3.3 Asked to surrender the physical token before leaving the facility or at the date of expiration
|
|
0
|
2963
|
March 18, 2007
|
[PCI DSS 1.x] 9.3.2 Given a physical token (for example, a badge or access device) that expires and that identifie
|
|
0
|
3332
|
March 18, 2007
|
[PCI DSS 1.x] 9.3.1 Authorized before entering areas where cardholder data is processed or maintained
|
|
0
|
2787
|
March 18, 2007
|
[PCI DSS 1.x] 9.2 Develop procedures to help all personnel easily distinguish between employees and visitors, espe
|
|
0
|
3357
|
March 18, 2007
|
[PCI DSS 1.x] 9.1.3 Restrict physical access to wireless access points, gateways, and handheld devices
|
|
0
|
3521
|
March 18, 2007
|
[PCI DSS 1.x] 9.1.2 Restrict physical access to publicly accessible network jacks
|
|
0
|
4397
|
March 18, 2007
|
[PCI DSS 1.x] 8.5.16 Authenticate all access to any database containing cardholder data. This includes access by a
|
|
0
|
5266
|
March 18, 2007
|
[PCI DSS 1.x] 8.5.15 If a session has been idle for more than 15 minutes, require the user to re-enter the passwor
|
|
0
|
4333
|
March 18, 2007
|
[PCI DSS 1.x] 8.5.14 Set the lockout duration to thirty minutes or until administrator enables the user ID
|
|
0
|
3496
|
March 18, 2007
|
[PCI DSS 1.x] 8.5.13 Limit repeated access attempts by locking out the user ID after not more than six attempts
|
|
0
|
3659
|
March 18, 2007
|
[PCI DSS 1.x] 8.5.12 Do not allow an individual to submit a new password that is the same as any of the last four
|
|
0
|
2696
|
March 18, 2007
|