{"frameworkId":"pci-dss","label":"PCI DSS v4.0.1","version":"4.0.1","description":"Payment Card Industry Data Security Standard \u2014 global security standard for organizations handling branded payment cards. Maintained by the PCI Security Standards Council.","homepageUrl":"https://www.pcisecuritystandards.org/","css":"fw-pci","totalControls":63,"registryKey":"pci-dss","csvColumn":"PciDss","displayOrder":6,"scoring":{"method":"requirement-compliance","requirements":{"1":{"label":"Install and Maintain Network Security Controls"},"2":{"label":"Apply Secure Configurations to All System Components"},"3":{"label":"Protect Stored Account Data"},"4":{"label":"Protect Cardholder Data with Strong Cryptography During Transmission"},"5":{"label":"Protect All Systems and Networks from Malicious Software"},"6":{"label":"Develop and Maintain Secure Systems and Software"},"7":{"label":"Restrict Access to System Components and Cardholder Data by Business Need to Know"},"8":{"label":"Identify Users and Authenticate Access to System Components"},"9":{"label":"Restrict Physical Access to Cardholder Data"},"10":{"label":"Log and Monitor All Access to System Components and Cardholder Data"},"11":{"label":"Test Security of Systems and Networks Regularly"},"12":{"label":"Support Information Security with Organizational Policies and Programs"}}},"colors":{"light":{"background":"#fef2f2","color":"#991b1b"},"dark":{"background":"#7F1D1D","color":"#FCA5A5"}},"groupBy":"section-prefix","groupLabel":"requirement","groups":{"1":"Network Security Controls","2":"Secure Configurations","3":"Protect Stored Account Data","4":"Protect Cardholder Data in Transit","5":"Protect Against Malicious Software","6":"Develop & Maintain Secure Systems","7":"Restrict Access by Need-to-Know","8":"Identify Users & Authenticate Access","9":"Restrict Physical Access","10":"Log & Monitor All Access","11":"Test Security Regularly","12":"Information Security Policy"}}
|