πΌ 3.3.1 SAD is not retained after authorization, even if encrypted.
-
Contextual name: πΌ 3.3.1 SAD is not retained after authorization, even if encrypted.
-
ID:
/frameworks/pci-dss-v4.0/03/03/01 -
Located in: πΌ 3.3 Sensitive authentication data (SAD) is not stored after authorization.
Descriptionβ
All sensitive authentication data received is rendered unrecoverable upon completion of the authorization process.
Similarβ
- Sections
/frameworks/pci-dss-v3.2.1/03/02/frameworks/pci-dss-v4.0.1/03/03/01
- Internal
- ID:
dec-c-68ae2c4c
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v3.2.1 β πΌ 3.2 Do not store sensitive authentication data after authorization (even if encrypted). | 3 | 5 | ||
| πΌ PCI DSS v4.0.1 β πΌ 3.3.1 SAD is not retained after authorization, even if encrypted. | 3 | 5 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v3.2.1 β πΌ 3.2 Do not store sensitive authentication data after authorization (even if encrypted). | 3 | 5 | ||
| πΌ PCI DSS v4.0.1 β πΌ 3.3.1 SAD is not retained after authorization, even if encrypted. | 3 | 5 |
Sub Sectionsβ
Policies (5)β
| Policy | Logic Count | Flags |
|---|---|---|
| π Google BigQuery Dataset is not encrypted with Customer-Managed Encryption Key (CMEK) π’ | 1 | π’ x6 |
| π Google BigQuery Table is not encrypted with Customer-Managed Encryption Key (CMEK) π’ | 1 | π’ x6 |
| π Google Dataproc Cluster is not encrypted using Customer-Managed Encryption Key π’ | 1 | π’ x6 |
| π Google GCE Disk for critical VMs is not encrypted with Customer-Supplied Encryption Key (CSEK) π’ | 1 | π’ x6 |
| π Google GCE Instance Confidential Compute is not enabled π’ | 1 | π’ x6 |