[PCI DSS 3.0] [PCI DSS 3.0] 12.3.2 Authentication for use of the technology

pcinetwork

PCINetwork.org Admin
#1
12.3.2 Authentication for use of the technology

12.3.2 Verify that the usage policies include processes for all technology use to be authenticated with user ID and password or other authentication item (for example, token).

If technology is implemented without proper authentication (user IDs and passwords, tokens, VPNs, etc.), malicious individuals may easily use this unprotected technology to access critical systems and cardholder data.
 
Top