PCI DSS version 3.2 release extends multifactor authentication requirement

The PCI Data Security Standard version 3.2 released Thursday not only includes new requirements to safeguard payment data,  including multifactor authentication, but also “advocates that organizations focus on people, process and policy, with technology playing an important role in reducing the overall cardholder data footprint,” PCI Security Standards Council General Manager Stephen Orfei said in a release.

The council’s chief technology officer (CTO), Troy Leach, said the time has come for multifactor authentication, which the updated standard requires of anyone that has administrative access to card data.

Full Article:

Leave a Reply