QSA_New_V4 無料問題集「PCI SSC Qualified Security Assessor V4」

（A）Active network connections are tracked so that invalid "response" traffic can be identified.

（B）Logs of user activity on the firewall are correlated to identify and respond to suspicious behavior.

（C）A current baseline of application configurations is maintained and any mis-configuration is responded to promptly.

（D）Administrative access to respond to requests to change the firewall Is limited to one individual at a time.

（A）Secure coding practices for commercial payment applications.

（B）End-to-end encryption solutions for transmission of account data.

（C）Development of strong cryptographic algorithms.

（D）Point-of-interaction devices used to protect account data.

（A）On the 1st of each fourth month.

（B）On the 15th of each third month.

（C）At least once every 95-97 days.

（D）Occurring at some point in each quarter of a year.

（A）An interim result before the final ROC has been completed.

（B）A ROC that has been completed after using an SAQ to determine which requirements should be tested, as per FAQ 1331.

（C）An assessment with at least one requirement marked as "Not Tested".

（D）A term used by payment brands and acquirers to describe entities that have multiple payment channels, with each channel having its own assessment.

（A）The hashed version of the PAN must also be truncated per PCI DSS requirements for strong cryptography.

（B）The hashed and truncated versions must be correlated so the source PAN can be identified.

（C）Hashed and truncated versions of a PAN must not exist in same environment.

（D）Controls are needed to prevent the original PAN being exposed by the hashed and truncated versions.

（A）At least 1 year, with the most recent 3 months immediately available.

（B）At least 2 years, with the most recent 3 months immediately available.

（C）At least 2 years, with the most recent month immediately available.

（D）At least 3 months, with the most recent month immediately available.

（A）The serial number of each device is periodically verified with the device manufacturer.

（B）Devices are physically destroyed if there is suspicion of compromise.

（C）Device identifiers and security labels are periodically replaced.

（D）Devices are periodically inspected to detect unauthorized card skimmers.