Verifone download needed no go variable
- Section 6.5.10, which requires implementation of software development policies and procedures to verify that broken authentication and session management are addressed with appropriate coding techniques.
- Section 8.5.1, mandating that service providers with remote access to customer premises must “use and verify” that different authentication credentials are used for each and every customer.
- Section 9.9, stipulating corporate policies ensure protection of card-reading devices that capture payment card data used in card-present transactions.
- Section 11.3, tied to “penetration testing” from both inside and outside the network and validation of any segmentation and scope-reduction controls.