thePCI Portal

Category: PCI SSC

MultiFactor and Multistep authentication

Some of the simple common questions regarding what is allowed for multifactor authentication are answered in FAQs from the Council. Some of the more complex ones aren’t and need technical expertise to answer, sorry. FAQ 1425:  Is “two-step” authentication the same as “two-factor” or “multi-factor” authentication? Answer summary:  NO FAQ 1449: Is two-step authentication acceptable…

What is an “Associate QSA”?

Today’s press release from the council announced efforts towards easing the resource constraints felt by QSA Companies. The PCI SSC is developing the Associate QSA certification with the goal of attracting new cyber talent to the program and easing the resource constraints felt by QSA Companies. This project is a first step in a phased…