AnsweredAssumed Answered

Requirement 8.3 of PCI-DSS ver 2.0

Question asked by Mark on Nov 10, 2010
Latest reply on Nov 29, 2010 by James.Beers

Requirement 8.3 of version 2.0 of the PCI-DSS actually lists the accepted two factor authentication methods for remote access . In my company (merchant) we are using a password and an IPSec certificate installed on the remote laptop for two factor authenmtication. Since only tokens and smart cards are listed in the standards, is the IPSec certificate acceptable too?

Outcomes