thePCI Portal

Category: V4.0

eye on PCI v4

full speed ahead on PCI v4

In October 2019, actual drafts of PCI DSS v4.0 will be distributed to stakeholders to review.  All Participating Organizations, Qualified Security Assessors (QSAs), and Approved Scanning Vendors (ASVs) will be invited to participate. Another round of feedback will occur in mid-2020. The request for comment (RFC) process will also be a key discussion topic at…

The upcoming revision to the data security standard, version 4

The Council has a blog post about the upcoming revision to the data security standard, version 4. While talking about version 4, the council has specifically identified the following industry feedback related to the DSS: Authentication, specifically consideration for the NIST MFA/password guidance Broader applicability for encrypting cardholder data on trusted networks Monitoring requirements to…