Presentation is loading. Please wait.

Presentation is loading. Please wait.

Inventory Management & Administration System Tourism suite What is the PCI DSS? The PCI DSS 1.2.1 stands for Payment Card Industry Data Security Standard.

Published byJesse Kelley Modified over 9 years ago

Similar presentations

Presentation on theme: "Inventory Management & Administration System Tourism suite What is the PCI DSS? The PCI DSS 1.2.1 stands for Payment Card Industry Data Security Standard."— Presentation transcript:

1

2 Inventory Management & Administration System Tourism suite What is the PCI DSS? The PCI DSS 1.2.1 stands for Payment Card Industry Data Security Standard. PCI-DSS is aiming to improve the quality of work and maintain the confidentiality, integrity and availability of data and Information. This comprehensive standard is intended to help organizations proactively protect customer account data. TeBAS is always seeking to bring the best of breed values to its clients hence a decision has been taken to comply and meet PCI- DSS application development requirement and implement it across IMAS systems. is proudly announcing that the following are the new features that are implemented across IMAS systems in order to meet the required and applied PCI-DSS: New Features Render all passwords unreadable during transmission and storage on all system components using strong cryptography. Control addition, deletion, and modification of user IDs, credentials, and other identifier objects.

3 Inventory Management & Administration System Tourism suite Set first-time passwords to a unique value for each user and change immediately after the first use. Remove/disable inactive user accounts at least every 90 days. Enable accounts used by vendors for remote maintenance only during the time period needed. Do not use group, shared, or generic accounts and passwords. Change user passwords at least every 90 days. Require a minimum password length of at least seven characters. Use passwords containing both numeric and alphabetic characters. Do not allow an individual to submit a new password that is the same as any of the last four passwords he or she has used. Limit repeated access attempts by locking out the user ID after not more than six attempts. Set the lockout duration to a minimum of 30 minutes or until administrator enables the user ID. If a session has been idle for more than 15 minutes, require the user to re-enter the password to re-activate the terminal. Implement automated audit trails for all system components to reconstruct the following events:

4 Tourism suite Inventory Management & Administration System All individual accesses to cardholder data. All actions taken by any individual with root or administrative privileges Access to all audit trails. Invalid logical access attempts. Use of identification and authentication mechanisms. Initialization of the audit logs. Record at least the following audit trail entries for all system components for each event : User identification. Type of event. Date and time. Success or failure indication. Origination of event. Identity or name of affected data, system component, or resource

5 Tourism suite TeBAS

Download ppt "Inventory Management & Administration System Tourism suite What is the PCI DSS? The PCI DSS 1.2.1 stands for Payment Card Industry Data Security Standard."

Similar presentations

TeBAS Tourism suite Technical Business Application System.

TeBAS Tourism suite Technical Business Application System.
Chapter Five Users, Groups, Profiles, and Policies.

Chapter Five Users, Groups, Profiles, and Policies.
MCDST 70-271: Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 7: Troubleshoot Security Settings and Local Security.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 7: Troubleshoot Security Settings and Local Security.
Notes: Update as of 1/13/2010. Vulnerabilities are included for SQL Server 2000, SQL Server 2005, SQL Server 2008. Oracle (8i, 9i, 9iR2, 10g, 10gR2,11g),

Notes: Update as of 1/13/2010. Vulnerabilities are included for SQL Server 2000, SQL Server 2005, SQL Server Oracle (8i, 9i, 9iR2, 10g, 10gR2,11g),
What’s New, Improved or Just Maybe Different! Presented by: Lisa Huppertz, CM/ECF Coordinator.

What’s New, Improved or Just Maybe Different! Presented by: Lisa Huppertz, CM/ECF Coordinator.
Database Administration and Security Transparencies 1.

Database Administration and Security Transparencies 1.
Access Control Methodologies

Access Control Methodologies
Information Systems Audit Program. Benefit Audit programs are necessary to perform an effective and efficient audit. Audit programs are essentially checklists.

Information Systems Audit Program. Benefit Audit programs are necessary to perform an effective and efficient audit. Audit programs are essentially checklists.
Decoding AWS CloudTrail with OSSEC

Decoding AWS CloudTrail with OSSEC
Security Controls – What Works

Security Controls – What Works
Security & Privacy The changing world of Privacy and the core drivers.

Security & Privacy The changing world of Privacy and the core drivers.
Information Security Policies and Standards

Information Security Policies and Standards
1 For System Administrators INFORMATION INFORMATION SYSTEM SECURITY INFORMATION INFORMATION SYSTEM SECURITY.

1 For System Administrators INFORMATION INFORMATION SYSTEM SECURITY INFORMATION INFORMATION SYSTEM SECURITY.
GPUG ® Summit 2011 November 8-11 Caesars Palace – Las Vegas, NV Payment Processing Online and Within Dynamics GP PCI Compliance and Secure Payment Processing.

GPUG ® Summit 2011 November 8-11 Caesars Palace – Las Vegas, NV Payment Processing Online and Within Dynamics GP PCI Compliance and Secure Payment Processing.
12.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

12.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
11 SUPPORTING LOCAL USERS AND GROUPS Chapter 3. Chapter 3: Supporting Local Users and Groups2 SUPPORTING LOCAL USERS AND GROUPS  Explain the difference.

11 SUPPORTING LOCAL USERS AND GROUPS Chapter 3. Chapter 3: Supporting Local Users and Groups2 SUPPORTING LOCAL USERS AND GROUPS  Explain the difference.
Notes: Update as of 12/31/2010 inclusive. Chart counts NIST CVE – Reported Software Flaws by “published” date, utilizing the NIST NVD. SQL Server.

Notes: Update as of 12/31/2010 inclusive. Chart counts NIST CVE – Reported Software Flaws by “published” date, utilizing the NIST NVD. SQL Server.
CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.

CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.
Kevin R Perry August 12, 2014. Part 1: High Level Changes & Clarifications.

Kevin R Perry August 12, Part 1: High Level Changes & Clarifications.
Why Comply with PCI Security Standards?

Why Comply with PCI Security Standards?

Similar presentations

Ads by Google