PCI DSS Revises Authentication Guidelines

The Payment Card Industry Data Security Standard (PCI DSS) has released version 3.2.
One of the key changes is an update to requirement 8.3.pci-security-standards.jpg

According to Crystal Bedell, Journalist with CIO.com, “This update highlights what the security industry already knows: Passwords are no longer a sufficient means of controlling access to sensitive data. In a word, compliance with PCI DSS now requires organizations to bolster its access security with multi-factor authentication.”

Since compromised passwords are the leading cause of data breaches (according to the 2016 Verizon Data Breach Investigations Report), this is a good thing. Although constantly warned against it, people continue to use the same password on multiple sites.

Hackers are getting better and better at data breaches, forcing the PCI to increase its security measures for e-commerce companies. Part of the PCI requirements includes vulnerability and malware scanning, both of which are offered by Trust Guard, the leader in website security.

Read the full article here:
http://blog.trust-guard.com/pci-says-passwords-need-strengthening/

Want more content related to online security? Here!
Strategies to Use During Cybersecurity Awareness Month!
Protecting Consumers Helps Businesses Thrive!
Is Your Mobile App Hack Proof?

Advertisements

One thought on “PCI DSS Revises Authentication Guidelines

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s