Tag: authentication
5 Key Concepts of the New PCI SSC Authentication Guide
At the end of August 2025, the PCI SSC published two new guides (informational supplements) related to authentication and cryptography. Although these documents do not change the applicability and/or enforceability of the related PCI SSC controls, they do...
Cryptographic hash with key: fundamentals and characteristics
One of the significant improvements that the PCI DSS standard incorporated in its version 4.0 was the use of keyed cryptographic hash functions (keyed cryptographic hash) as a replacement for traditional hash functions (non-keyed hash) that, until...
Analysis of PCI DSS v4.0 – Part V: Requirements 7, 8 and 9
In this fifth installment of the series ‘PCI DSS Analysis v4.0’, the changes applied to requirements 7, 8 and 9 of the standard in its new version (4.0) will be analysed. These requirements – which are part of Group 4 ...
