Tag: authentication

5 Key Concepts of the New PCI SSC Authentication Guide

At the end of August 2025, the PCI SSC published two new guides (informational supplements) related to authentication and cryptography. Although these documents do not change the applicability and/or enforceability of the related PCI SSC controls, they do...

/ September 2, 2025

Cryptographic hash with key: fundamentals and characteristics

One of the significant improvements that the PCI DSS standard incorporated in its version 4.0 was the use of keyed cryptographic hash functions (keyed cryptographic hash) as a replacement for traditional hash functions (non-keyed hash) that, until...

/ May 15, 2025

Analysis of PCI DSS v4.0 – Part V: Requirements 7, 8 and 9

In this fifth installment of the series ‘PCI DSS Analysis v4.0’, the changes applied to requirements 7, 8 and 9 of the standard in its new version (4.0) will be analysed. These requirements – which are part of Group 4 ...

/ August 18, 2022