This document describes the steps that must be followed in order for your ASI installations to comply with Payment Application – Data Security Standards (PA-DSS). The information in this document is based on PCI Security Standards Council Payment Application Data Security Standards program (version 2.2 dated November, 2015).
ASI instructs and advises its customers to deploy ASI applications in a manner that adheres to the PCI Data Security Standard (v2.2). Subsequent to this, best practices and hardening methods, such as those referenced by the Center for Internet Security (CIS) and their various “Benchmarks”, should be followed in order to enhance system logging, reduce the chance of intrusion and increase the ability to detect intrusion, as well as other general recommendations to secure networking environments. Such methods include, but are not limited to, enabling operating system auditing subsystems, system logging of individual servers to a centralized logging server, the disabling of infrequently-used or frequently vulnerable networking protocols and the implementation of certificate-based protocols for access to servers by users and vendors.
You must follow the steps outlined in this Implementation Guide in order for your Restaurant Manager installation to support your PCI DSS compliance efforts.
Next Topic "Revision Information"
Proprietary and Confidential Information