PAN display masking rule states that PAN must be masked when displayed; which is true about who can view full PAN?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the PCI DSS Test with detailed questions and explanations. Use flashcards and quizzes to enhance knowledge. Ensure you're ready for your certification exam!

Multiple Choice

PAN display masking rule states that PAN must be masked when displayed; which is true about who can view full PAN?

Explanation:
The key idea is protecting the PAN by displaying it only to those who truly need to see the full number. The PAN is highly sensitive credit-card data, so showing it to everyone would greatly increase the risk of exposure—from shoulder surfing, screenshots, or unsecured logs. The proper approach is to mask the PAN when it’s displayed, and allow the full number to be viewed only by roles with a legitimate business need. Access to the full PAN should be governed by least-privilege and need-to-know principles, with controls like role-based access, secure systems, and audit trails in place. If a task truly requires the full PAN, it should be provided through a secure process rather than opened up to all staff. That’s why the statement that the PAN is masked when displayed and only those with a legitimate business need can see the full PAN is the best fit.

The key idea is protecting the PAN by displaying it only to those who truly need to see the full number. The PAN is highly sensitive credit-card data, so showing it to everyone would greatly increase the risk of exposure—from shoulder surfing, screenshots, or unsecured logs. The proper approach is to mask the PAN when it’s displayed, and allow the full number to be viewed only by roles with a legitimate business need. Access to the full PAN should be governed by least-privilege and need-to-know principles, with controls like role-based access, secure systems, and audit trails in place. If a task truly requires the full PAN, it should be provided through a secure process rather than opened up to all staff. That’s why the statement that the PAN is masked when displayed and only those with a legitimate business need can see the full PAN is the best fit.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy