On which date did broken authentication and session management become a formal requirement?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Prepare for the PCI Data Security Standard Test with our quiz. Use flashcards and multiple-choice questions to learn each concept. Get ready to excel in your examination!

Multiple Choice

On which date did broken authentication and session management become a formal requirement?

This item is about when PCI DSS formally began requiring protections for authentication and how sessions are managed. Broken authentication and session management means putting solid safeguards around login credentials and how user sessions are created, maintained, and terminated to prevent attackers from gaining access. Implementing strong authentication methods, protecting and rotating credentials, ensuring sessions time out, and requiring re-authentication for sensitive actions are all part of this.

The formal requirement date is June 30, 2015, which is when the standard was updated to codify broken authentication and session management as an official requirement. The other dates don’t match the official adoption date of this provision, so they aren’t correct.

On which date did broken authentication and session management become a formal requirement?

Prepare for the PCI Data Security Standard Test with our quiz. Use flashcards and multiple-choice questions to learn each concept. Get ready to excel in your examination!

On which date did broken authentication and session management become a formal requirement?

Get the latest from Examzify