PCI DSS 4.0 Requirements – Restrict Physical Access and Log and Monitor All Access

PCI DSS 4.0 Requirements 9 and 10

Most data crimes are the result of online compromises. This makes sense, as the criminals don’t need to know any of the old, dirty, hands-on techniques such as lock-picking, dumpster diving, or any other evasive maneuvers to carry out a successful attack. However, this doesn’t mean that the old methods are completely defunct. Physical security is still an important facet of a complete security program. In the new 4.0 version of PCI DSS, Requirement 9, “Restrict Physical Access to Cardholder Data” aims to keep the CDE safe from physical compromises. Like its earlier version, it also reiterates…

The post “PCI DSS 4.0 Requirements – Restrict Physical Access and Log and Monitor All Access” appeared first on TripWire

Source:TripWire – Editorial Staff