PCI ISA Flashcards 3.2.1 Exam - Question and Answers | Latest Complete 2023 Graded A+

PCI ISA Flashcards 3.2.1 Exam - Question and Answers | Latest Complete 2023 Graded A+. When should access be revoked of recently terminated employees? - ANSWERimmediately True or False: A visitor with a badge may enter sensitive area unescorted. - ANSWERFalse, visitors must be escorted at all times. Protection of keys used for encryption of cardholder data against disclosure must include at least: (4 items) - ANSWER-*Access to keys is restricted to the fewest number of custodians necessary *Key-encrypting keys are at least as strong as the data-encrypting keys they protect *Key encrypting keys are stored separately from data-encrypting keys *Keys are stored securely in the fewest possible locations Description of cryptographic architecture includes: - ANSWER-*Details of all algorithms, protocols, and keys used for the protection of cardholder data, including key strength and expiry date *Description of the key usage for each key *Inventory of any HSMs and other SCDs used for key management What 2 methods must NOT be used to be disk-level encryption compliant - ANSWER- *Cannot use the same user account authenticator as the operating system *Cannot use a decryption key that is associated with or derived from the systems local user account database or general network login credentials. 6 months - ANSWER-DESV User accounts and access privileges are reviewed at least every______ Track 1 (Length up to 79 characters) - ANSWER-Contains all fields of both Track 1 and Track 2 Track 2 (Length up to 40 characters) - ANSWER-Provides shorter processing time for older dial-up transmissions.