PCI-DSS ISA STUDY GUIDE II WITH VERIFIED SOLUTIONS
PCI-DSS ISA STUDY GUIDE II WITH VERIFIED SOLUTIONS Requirement 4 - Encrypt transmission of cardholder data across open, public networks. Strong cryptography and Security Protocols are to include the following - Only trusted keys and certificates are accepted, protocol in use only supports secure versions or configurations, and encryption strength is appropriate for the encryption methodology in use. Examples of security protocols - TLS, IPSEC, SSH Testing procedures for verifying secure transmission of sensitive cardholder data - Observe a sample of inbound and outbound transmissions as they occur, examine keys and certificates to ensure that only trusted keys and certificates are accepted, Examine system configurations to verify that the protocols in use do not support insecure versions or configurations, and examine system configurations to verify that proper encryption strength is implemented for the encryption methodology in use. What is the testing procedure for TLS implementations? - Examine system configurations to verify that TLS is enabled.
Written for
- Institution
- PCI-DSS ISA
- Course
- PCI-DSS ISA
Document information
- Uploaded on
- March 13, 2023
- Number of pages
- 7
- Written in
- 2022/2023
- Type
- Exam (elaborations)
- Contains
- Questions & answers
Subjects
- pci dss isa
-
pci dss isa study guide ii 2023 2024 with verified solutions
Also available in package deal
