In Retail Industry, the storage, processing and transmission of cardholder information present a growing potential exposure for the retailer. The Payment Card Industry (PCI) has worked to develop and implement a variety of security standards to protect consumer and cardholder data, such as credit card numbers. PCI DSS was created to prevent credit card fraud, identify theft, hacking and other security threats. Any organization that stores, processes or transmits cardholder data must include strong end-user access controls to be PCI DSS compliant or risk audits, fines or the loss of the right to process payments via credit or debit card.
ArrayShield IDAS 2 Factor Authentication helps retail organizations to meet PCI DSS Compliance Guidelines
PCI DSS Standards
The Payment Card Industry Data Security Standards (PCI DSS) mandate that organizations who “hold, process, or pass cardholder information” meet a minimum level of security. Part of this security is protecting remote access logins with strong authentication. Specifically, section 8.3 says that organizations must “Implement two-factor authentication for remote access to the network by employees, administrators, and third parties”