Frequently Asked Question
What is the intent of PCI DSS Requirement 3.4.1?
2. Use a decryption key that is associated with or derived from the system’s local user account database or general network login credentials.
Featured FAQ Articles
Most Recently Updated
Is the expectation that any PFI investigation initiated must result in a PFI Final Report?
Can SAQ eligibility criteria be used for determining applicability of PCI DSS requirements for assessments documented in a Report on Compliance?
Do PCI DSS requirements for keyed cryptographic hashing apply to previously hashed PANs?