[PA-DSS] 2.4 If disk encryption is used (rather than file- or column-level database encryption), log

[READ-ONLY] Archives [RETIRED] PA-DSS v.1.x Questions and Answers [PA-DSS] 2. Protect stored cardholder data
1

2.4 If disk encryption is used (rather than file- or column-level database encryption), logical access must be managed independently of native operating system access control mechanisms (for example, by not using local user account databases). Decryption keys must not be tied to user accounts.

PCI Data Security Standard Requirement 3.4.1

Testing Procedures:

2.4 If disk encryption is used, verify that it is implemented in accordance with PCI DSS Requirements 3.4.1.a through 3.4.1.c.

2

I see that requirement 2.4 regarding the use of disk encryption has been removed from Version 3.0 of PA-DSS.

Does this mean that disk encryption is no longer allowed as an option for encryption of cardholder data, or that this requirement was unnecessary (as long as the disk encryption meets the requirements for key management in 2.3)?