Recent FAQ Changes RSS

Latest changes to PCI SSC frequently asked questions.

FAQ 1067 Deleted

What is meant by "non-consumer users" in PCI DSS Requirement 8?

PCI DSS Requirement 8 addresses secure authentication requirements and requires that all passwords and other authentication credentials be securely managed. These requirements apply to all non-consumer users and administrators. The …

FAQ 1173 Deleted

Who is qualified to perform PA-DSS assessments?

Payment Application Qualified Security Assessors (PA-QSAs) are qualified by the Council to validate payment applications for compliance to PA-DSS. A list of PA-QSAs is available on the Council website. A …