Document Comparison
PCI_DSS_Prioritized_Approach_v2_summary_of_changes.pdf
→
PCI_DSS_Prioritized_Approach_Summary_of_Changes_v2_to_v3.pdf
21% similar
2 → 3
Pages
329 → 557
Words
4
Content Changes
Content Changes
4 content changes. 3 administrative changes (dates, page numbers) hidden.
Added
p. 2
Requirements have been
• updated to align with PCI DSS version 3.0. Where a PCI DSS requirement was restructured, its previous milestone number was retained unless noted below. (For example, former Requirement 2.2.2 was
• updated in PCI DSS version 3.0 and is now Requirements 2.2.2 and 2.2.3. The previous milestone number for Requirement 2.2.2 is retained and also applies to Requirement 2.2.3.) PCI DSS requirements that were previously combined in the Prioritized Approach Tool have been separated to clarify which requirement the milestone applies to. (For example, Requirements 1.1 and 1.1.1).
A requirement that is met in its entirety by its sub-requirements does not have an additional milestone number assigned. (For example, Requirement 1.1).
PCI DSS Requirement 8.3 moved to Milestone 2 PCI DSS Requirement 12.5.3 moved to Milestone 2 PCI DSS Requirement 12.10 moved to Milestone 2 Requirements that are new in PCI DSS version 3.0 …
• updated to align with PCI DSS version 3.0. Where a PCI DSS requirement was restructured, its previous milestone number was retained unless noted below. (For example, former Requirement 2.2.2 was
• updated in PCI DSS version 3.0 and is now Requirements 2.2.2 and 2.2.3. The previous milestone number for Requirement 2.2.2 is retained and also applies to Requirement 2.2.3.) PCI DSS requirements that were previously combined in the Prioritized Approach Tool have been separated to clarify which requirement the milestone applies to. (For example, Requirements 1.1 and 1.1.1).
A requirement that is met in its entirety by its sub-requirements does not have an additional milestone number assigned. (For example, Requirement 1.1).
PCI DSS Requirement 8.3 moved to Milestone 2 PCI DSS Requirement 12.5.3 moved to Milestone 2 PCI DSS Requirement 12.10 moved to Milestone 2 Requirements that are new in PCI DSS version 3.0 …
Removed
p. 2
PCI DSS Requirement 9.1 moved to Milestone 2 PCI DSS Requirement 10.5 moved to Milestone 4 PCI DSS Requirement 11.1 moved to Milestone 4 PCI DSS Requirement 11.3 moved to Milestone 2 PCI DSS Requirement 12.1.2 moved to Milestone 1 PCI DSS Requirement 12.5.3 moved to Milestone 4 PCI DSS Requirement 12.9 moved to Milestone 4 Prioritized Approach Tool Added “Stage of Implementation” column for organizations to track the progress of implementation for non-compliant requirements.
Prioritized Approach Tool Added “Estimated Date for Completion of Milestone” column for organizations to record target completion dates for each non-compliant requirement. Target dates for non-compliant requirements are then consolidated for each milestone in the Summary table.
Disclaimer To achieve PCI DSS compliance, an organization must meet all PCI DSS requirements, regardless of the order in which they are satisfied or whether the organization seeking compliance follows the PCI DSS …
Prioritized Approach Tool Added “Estimated Date for Completion of Milestone” column for organizations to record target completion dates for each non-compliant requirement. Target dates for non-compliant requirements are then consolidated for each milestone in the Summary table.
Disclaimer To achieve PCI DSS compliance, an organization must meet all PCI DSS requirements, regardless of the order in which they are satisfied or whether the organization seeking compliance follows the PCI DSS …
Modified
p. 2
PCI DSS Prioritized Approach Summary of Changes from PCI DSS Version 1.2 to 2.0 Type of Change Details General Updated Requirements and Testing Procedures to align with PCI DSS version 2.0.
PCI DSS Prioritized Approach Summary of Changes from PCI DSS Version 2.0 to 3.0 Type of Change Details General The title and description for Milestone 2 has been updated to reflect the control areas that are now addressed in this milestone.
Modified
p. 2
Milestones The following milestone changes were made to reflect the evolving risk environment, and to align requirements with milestone control areas:
Milestones The following Milestone changes were made to reflect the evolving risk environment: