πΌ 8.6.3 Passwords/passphrases for any application and system accounts are protected against misuse.
-
Contextual name: πΌ 8.6.3 Passwords/passphrases for any application and system accounts are protected against misuse.
-
ID:
/frameworks/pci-dss-v4.0/08/06/03 -
Located in: πΌ 8.6 Use of application and system accounts and associated authentication factors is strictly managed.
Descriptionβ
As follows:
- Passwords/passphrases are changed periodically (at the frequency defined in the entity's targeted risk analysis, which is performed according to all elements specified in Requirement 12.3.1) and upon suspicion or confirmation of compromise.
- Passwords/passphrases are constructed with sufficient complexity appropriate for how frequently the entity changes the passwords/passphrases.
Similarβ
- Sections
/frameworks/pci-dss-v4.0.1/08/06/03
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0.1 β πΌ 8.6.3 Passwords/passphrases for any application and system accounts are protected against misuse. | 1 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0.1 β πΌ 8.6.3 Passwords/passphrases for any application and system accounts are protected against misuse. | 1 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS IAM User Access Keys are not rotated every 90 days or less π’ | 1 | π’ x6 |