πΌ 8.3.10 If passwords/passphrases are used as the only authentication factor for customer user access to cardholder data, then guidance is provided to customer users.
-
Contextual name: πΌ 8.3.10 If passwords/passphrases are used as the only authentication factor for customer user access to cardholder data, then guidance is provided to customer users.
-
ID:
/frameworks/pci-dss-v4.0.1/08/03/10 -
Located in: πΌ 8.3 Strong authentication for users and administrators is established and managed.
Descriptionβ
Additional requirement for service providers only.
Including:
- Guidance for customers to change their user passwords/passphrases periodically.
- Guidance as to when, and under what circumstances, passwords/passphrases are to be changed.
Similarβ
- Sections
/frameworks/pci-dss-v4.0/08/03/10
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 8.3.10 If passwords/passphrases are used as the only authentication factor for customer user access to cardholder data, then guidance is provided to customer users. | 1 | 1 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 8.3.10 If passwords/passphrases are used as the only authentication factor for customer user access to cardholder data, then guidance is provided to customer users. | 1 | 1 |
Sub Sectionsβ
Policies (1)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS IAM User Access Keys are not rotated every 90 days or less π’ | 1 | π’ x6 |