SSL and/or early TLS must not be introduced into environments where those protocols don't already exist.

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the PCI Approved Scanning Vendor (ASV) Test. Study with flashcards, multiple choice questions, hints, and explanations. Get exam ready!

Multiple Choice

SSL and/or early TLS must not be introduced into environments where those protocols don't already exist.

Explanation:
SSL and early TLS are considered insecure for protecting cardholder data in transit, and PCI DSS requires moving away from them to stronger protocols (TLS 1.2 or higher). Introducing SSL or early TLS in an environment that doesn’t already use them would create a weak, noncompliant setup and undermine security, so the correct stance is that you must not introduce these protocols. In other words, the policy is to avoid insecure cryptography and ensure all communications use modern, strong TLS. Not applicable, false, or maintaining them would all misstate the PCI requirement, which is to disable and not bring back these legacy protocols.

SSL and early TLS are considered insecure for protecting cardholder data in transit, and PCI DSS requires moving away from them to stronger protocols (TLS 1.2 or higher). Introducing SSL or early TLS in an environment that doesn’t already use them would create a weak, noncompliant setup and undermine security, so the correct stance is that you must not introduce these protocols. In other words, the policy is to avoid insecure cryptography and ensure all communications use modern, strong TLS. Not applicable, false, or maintaining them would all misstate the PCI requirement, which is to disable and not bring back these legacy protocols.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy