PCI DSS v4.0 released

The PCI Security Standards Council (PCI SSC) published version 4.0 of the PCI Data Security Standard (PCI DSS). PCI DSS is a global standard that provides a foundation of technical and operational requirements for the protection of account data.

PCI DSS 4.0 release includes:

• updating firewall protection standards and extending them to other technologies aimed at meeting the growing security needs of the payment industry;

• expanding multi-factor authentication (MFA) to all card data access scenarios;

• greater options and flexibility for organizations in choosing different methods to achieve security goals and validation procedures.

In order to allow organizations enough time to implement the new version and all updates, the transition period to the new version 4.0 will be two years, during which the current version of PCI DSS 3.2.1 will be available until March 31, 2024.

Learn more: Help Net Security