The PCI Data Security Standard (DSS) represents a common set of industry tools and measurements to help ensure the safe handling of sensitive information. Initially created by aligning Visa’s Account Information Security (AIS)/Cardholder Information Security (CISP) programs with MasterCard’s Site Data Protection (SDP) program, the standard provides an actionable framework for developing a robust account data security process – including preventing, detecting and reacting to security incidents.

Databases are particularly critical to PCI regulations due to their storage of credit

card information.

PCI DSS Section applicable to databases:

• #2 Do not use default passwords
• #3 Protect Stored Data
• #6 Secure Systems and Applications
• #7 Restirct Data Access
• #8 Assign Unique IDs
• #10 Monitor all data access
• #12 Maintain an info security policy
•