PCIP3.0無料問題集「PCI Payment Card Industry Professional」

質問 1

The P2PE Standard covers:

（A）Physical security requirements for manufacturing payment cards

（B）Secure payment applications for processing transactions

（C）Mechanisms used to protect the PIN and encrypted PIN blocks

（D）Encryption, decryption, and key management requirements for point-to-point encryption solutions

正解：D 解答を投票する

質問 2

To consider Compensating Controls, one of the following must exist that precludes implementing the stated control: (Select ALL that apply)

（A）Time Constraint

（B）None of the others

（C）Legitimate Technical Constraint

（D）Documented Business Constraint

正解：C、D 解答を投票する

質問 3

SELECT ALL THAT MATCHES
Examples of two-factor technologies include:

（A）Single Sign On SAML 2.0

（B）RADIUS with tokens

（C）Digital Certificates (if unique per ID)

（D）TACACS with tokens

正解：B、C、D 解答を投票する

質問 4

The Information Supplements: (Select ALL that apply)

（A）Provide additional guidance on specific technologies

（B）Do not replace or supersede any PCI standard

（C）May be used as compensating control replacing one of the requirements

（D）Include recommendations and best practices

正解：A、B、D 解答を投票する

質問 5

Use of a Qualified Integrator/Reeller (QIR):

（A）is required by PCI DSS

（B）replaces the need for PCI DSS

（C）ensures PCI DSS compliance

（D）is a good step towards PCI DSS compliance

正解：D 解答を投票する

質問 6

When evaluating "above and beyond" for compensating controls, an existing PCI DSS requirement MAY be considered as compensating controls if they are required for another area, but are not required for the item under review

（A）False

（B）True

正解：B 解答を投票する

質問 7

Users passwords/passphrases should be changed on a minimal of what interval to meet Requirement
8 .2.4?

（A）90 days

（B）180 days

（C）30 days

（D）60 days

正解：A 解答を投票する

質問 8

Track and monitor all access to network resources and cardholder data is the ___________

（A）Requirement 10

（B）Requirement 8

（C）Requirement 9

（D）Requirement 11

正解：A 解答を投票する

質問 9

SELECT ALL THAT APPLY
To be compliant with requirement 9.9 an updated list of all card-reading devices used in card-present transactions at the point of sale must be kept by June 30 2015 including the following:

（A）Device serial number or other unique identification

（B）Location of device

（C）Proof of purchase

（D）Make, model of device

正解：A、B、D 解答を投票する

PCIP3.0 無料問題集「PCI Payment Card Industry Professional」

弊社を連絡する

関連リンク

トップ試験