πΌ 11.4 Use intrusion-detection and/or intrusion-prevention techniques to detect and/or prevent intrusions into the network.
-
Contextual name: πΌ 11.4 Use intrusion-detection and/or intrusion-prevention techniques to detect and/or prevent intrusions into the network.
-
ID:
/frameworks/pci-dss-v3.2.1/11/04 -
Located in: πΌ 11 Regularly test security systems and processes.
Descriptionβ
Monitor all traffic at the perimeter of the cardholder data environment as well as at critical points in the cardholder data environment, and alert personnel to suspected compromises.
Keep all intrusion-detection and prevention engines, baselines, and signatures up to date.
Similarβ
- Sections
/frameworks/pci-dss-v4.0/11/05/01/01/frameworks/pci-dss-v4.0/11/05/01/frameworks/pci-dss-v4.0/11/06/01/frameworks/aws-fsbp-v1.0.0/guardduty/01
- Internal
- ID:
dec-c-d7c96f19
- ID:
Similar Sections (Take Policies From)β
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network. | 1 | 1 | ||
| πΌ PCI DSS v4.0 β πΌ 11.5.1.1 Intrusion-detection and/or intrusion-prevention techniques detect, alert on/prevent, and address covert malware communication channels. | 1 | |||
| πΌ PCI DSS v4.0 β πΌ 11.6.1 A change- and tamper-detection mechanism is deployed. | 1 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS VPC Flow Logs are not enabled π’ | 1 | π x1, π’ x5 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-9c041667 | 1 |