Author Topic: Configuration Standards Required for PCI DSS?  (Read 11169 times)

Offline zuned

  • Newbie
  • *
  • Posts: 1
Configuration Standards Required for PCI DSS?
« on: June 25, 2013, 02:09:13 AM »
Hi all. I have a question around if Hardening/ Configuration Standards are required for the following devices or systems. The PCI standard v2.0 is not prescriptive enough to know which ones are required or not.

Your help would be much appreciated, in terms of guiding me if I do need standards for them as per PCI requirements.

ATMs

Tripwire

Archsight

Point Of Sale Devices

EMV/ Card Printing System

PGP Encryption

Database encryption

Offline markphorm

  • Newbie
  • *
  • Posts: 3
Re: Configuration Standards Required for PCI DSS?
« Reply #1 on: January 13, 2014, 11:17:33 AM »
Configuration standards are mainly for operating systems and infrastructure software. But as always, it depends of your QSA.

Mark
http://www.pci-initiative.org

 

Seo4Smf 2.0 © SmfMod.Com Smf Destek