[Forgot Password]
Login  Register Subscribe

23631

 
 

122183

 
 

98060

 
 

909

 
 

79198

 
 

109

Paid content will be excluded from the download.


Download | Alert*
XCCDF

PCI DSS: Guidance To Build and Maintain a Secure Network for Microsoft Windows Server 2016 Systems

ID: xccdf_org.secpod_benchmark_PCI_3_2_Windows_Server_2016Date: (C)2017-09-22   (M)2017-11-21
Status: draftVersion: 4.0
Platform: cpe:/o:microsoft:windows_server_2016Source: [https://www.pcisecuritystandards.org]






The Payment Card Industry (PCI) Data Security Standard (DSS) was developed to encourage and enhance cardholder data security and facilitate the broad adoption of consistent data security measures globally. PCI DSS provides a baseline of technical and operational requirements designed to protect cardholder data. PCI DSS applies to all entities involved in payment card processing including merchants, processors, acquirers, issuers, and service providers, as well as all other entities that store, process or transmit cardholder data. PCI DSS comprises a minimum set of requirements for protecting cardholder data, and may be enhanced by additional controls and practices to further mitigate risks. Below is a high-level overview of the 12 PCI DSS requirements. Build and Maintain a Secure Network 1. Install and maintain a firewall configuration to protect cardholder data 2.Do not use vendor-sipplied defaults for system passwords and other security parameters Protect Cardholder Data 3.Protect stored cardholder data 4.Encrypt transmission of cardholder data across open,public networks Maintain a Vulnerability Management Program 5. Use and regularly update anti-virus software or programs 6.Develop and maintain secure systems and applications Implement Strong Access Control Measures 7. Restrict access to cardholder by business need to know 8. Assgin a unique ID to each person with computer access 9. Restrict physical access to cardholder data Regular Monitor and Test networks 10. Track and monitor all access to network resources and cardholder data 11. Regularly test security systems and processes Regular Monitor and Test networks 12. Maintain a policy that addresses information security for all personnel

CPE    1
cpe:/o:microsoft:windows_server_2016
CCE    111
CCE-45276-3
CCE-46027-9
CCE-47309-0
CCE-46219-2
...
OVAL    111
oval:org.secpod.oval:def:40245
oval:org.secpod.oval:def:40244
oval:org.secpod.oval:def:40249
oval:org.secpod.oval:def:40252
...

© 2013 SecPod Technologies