Which policy is required regarding PAN transmission via end-user messaging technologies?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $24.99Unlock all

Prepare for the PCI DSS Test with detailed questions and explanations. Use flashcards and quizzes to enhance knowledge. Ensure you're ready for your certification exam!

Multiple Choice

Which policy is required regarding PAN transmission via end-user messaging technologies?

Transmitting the PAN through end-user messaging tools is risky because those channels don’t provide reliable, PCI-compliant protection in transit. PCI DSS guidance emphasizes that cardholder data should not be sent over end-user messaging technologies in unprotected form, since interception, eavesdropping, or unauthorized access is more likely on those platforms. The correct policy, therefore, is to prohibit sending unprotected PANs via these channels, reducing the chance of exposure and aligning with the requirement to protect cardholder data during transmission. Policies that allow unencrypted transmission, restrict transmission to a single method, or suggest never generating PANs do not address the core risk of insecure in-transit handling.

Which policy is required regarding PAN transmission via end-user messaging technologies?

Prepare for the PCI DSS Test with detailed questions and explanations. Use flashcards and quizzes to enhance knowledge. Ensure you're ready for your certification exam!

Which policy is required regarding PAN transmission via end-user messaging technologies?

Get the latest from Examzify