Chapter 13

Requirement 6

Develop and Maintain Secure Systems

Applications are the lifeblood of any organization. This is true of organizations in the payment-card industry as well. Applications are an indispensable entity for organizations like merchants, TPPs, e-commerce merchants, service providers, and so on. Requirement 6 deals heavily with the security of applications. The requirement begins with the process of patching and patch management across operating systems (OS) and application components in the PCI environment. Subsequently, the requirement dives deep into application security practices for organizations developing/deploying applications in the PCI environment, including vulnerability management and secure coding practices for ...

Get PCI Compliance now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.