• Which PCI DSS Requirements are in this Domain?
• What Else Can You Do to Be Secure?
• Tools and Best Practices
• Common Mistakes and Pitfalls
• Case Study
Access controls are fundamental to good security in almost any situation. We put locks on our cars and homes to restrict access to them to only authorized parties—presumably those with keys. We put passwords on computer accounts to protect them. In this chapter, we describe some basic security principles and approaches that should be understood and implemented any time access control systems are implemented—not just for PCI DSS. By understanding these basic principles, you will find it easier to make decisions on implementing ...