A protocol, service, or port that introduces security concerns due to the lack of controls over confidentiality and/or integrity. These security concerns include services, protocols, or ports that transmit data or authentication credentials (for example, password/passphrase) in clear-text over the Internet, or that easily allow for exploitation by default or if misconfigured. Examples of insecure services, protocols, or ports include but are not limited to FTP, Telnet, POP3, IMAP, and SNMP v1 and v2.
- PCI Qualified Professionals
-
-
-
Verify or search for a PCI Qualified Professional. Select the qualification that best suits your needs.
-
-
-
- Products & Solutions Listings
-
-
-
Locate approved devices and payment solutions for use at the point of sale, and point-to-point encryption solutions to protect cardholder data.
-
-
-
- Training & Qualification
-
-
-
Learn more about PCI SSC’s Training & Qualification programs, class schedules, registration information, corporate group training and knowledge training.
-
-
-
- Events
-
-
-
Attend PCI SSC upcoming Community Meetings, programs, webcasts, and industry events where we are speaking.
-
-
-
- Get Involved
-
- Newsroom
-
- Resources
-
- About Us
-
