Abstract
Segmentation is one of the most misunderstood aspects of PCI compliance. Many people read too deeply into the DSS about segmentation. On page 12 of PCI DSS version 4, it states that segmentation of the CDE from the remainder of an entity’s network is not a PCI DSS requirement. The next sentence, though, does clarify that segmentation is strongly recommended as a method that may reduce the
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have