Index

A

Access Control Entities (ACEs), 84
Access Control Lists (ACLs), 84
Access controls, 73
authentication
basics of, Requirement, 8, 7684
and Requirements 8.5.1–8.5.7, 7981
case study
loose permissions case, 99100
stolen database case, 9899
Cisco enforcing session timeout, 9091
databases and Requirement 8.5.16, 8384
educating users, 8182
locking users out, Requirements 8.5.13–8.5.15, 8283
multifactor authentication, 77
paper data, 9495
password
design for PCI DSS, Requirements 8.5.8–8.5.12, 82
policy enforcement, 96
password complexity requirements, 8990, 82
SUID and SGID, 89
PCI compliant access controls, 94
PCI DSS requirements, 7394
physical security, 9194
facility entry controls, 91
handling media, Requirements 9.5–9.10.2, ...

Get PCI Compliance, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.

Start your free trial