5Oca
Clarification of PCI DSS 3.1 requirement 6+8
I’m quite puzzled about the PCI requirements when it comes to session timeouts and scope definitions.
The login is the end user/customer login to the public facing control panel in which they can handle their own transactions. We act as …