What is the Appendix A on PCI DSS 3.0?
A. Additional PCI DSS Requirements for Shared Hosting Providers
B. Compensating Controls
C. Segmentation and Sampling of Business Facilities/System Components
D. Cloud Computing Guidelines
正解:A
質問 2:
Merchants using only web-based virtual payment terminals, no electronic cardholder data storage, may be eligible to use what SAQ?
A. SAQ B
B. SAQ C
C. SAQ A
D. SAQ D
E. SAQ C-VT
正解:E
質問 3:
An audit trail history should be available immediately for analysis within a minimum of
A. 6 months
B. 3 months
C. 30 days
D. 1 year
正解:B
質問 4:
The PCI DSS Requirement most closely associated with "Logging" is ____________
A. Requirement 11
B. Requirement 10
C. Requirement 8
D. Requirement 2
正解:B
質問 5:
PCI DSS Requirement 5 states that anti-virus software must be:
A. Installed on all systems, even those not commonly affected by malware
B. Updated at least annually
C. Installed on all systems commonly affected by malware
D. Configured to allow users to disable it as desired
正解:C
質問 6:
For initial PCI DSS compliance, it's not required that four quarters of passing scans must be completed if the assessor verifies that 1) the most recent scan result was a passing scan, 2) the entity has documented policies and procedures requiring quarterly scanning, and 3) vulnerabilities noted in the scan results have been corrected as shown in a re-scan(s).
A. False
B. True
正解:B
質問 7:
Passwords/Passphrases should not be allowed if the same of the last ____ used passwords/passphrases.
(Requirement 8.2.5)
A. 4
B. 1
C. 6
D. 2
正解:A
質問 8:
Do not use vendor-supplied defaults for system passwords and other security parameters is the
___________
A. Requirement 1
B. Requirement 3
C. Requirement 4
D. Requirement 2
正解:D
1160 お客様のコメント





神*咲 -
ボリュームをあって内容も充実しています。
丁寧でわかりやすい解説で理解しやすいです。