Skip to content
HALOCK Logo

Reasonable Security847-221-0200

Incident Response Hotline: 800-925-0559

  • Services
    • Artificial Intelligence (AI) Security
      • AI Risk Assessment
      • CCPA Privacy Risk Assessment
      • Microsoft Copilot Security
    • Offensive Security (Pen Testing, Adversarial Test, Application Test)
      • Application Testing
      • Adversarial Testing
      • Penetration Testing
    • Governance and Risk Management
      • Risk Assessments
      • Governance and Risk Solutions
      • CISO & vCISO Advisory
      • CIS RAM Consulting
      • DoCRA Services
    • Security Management
      • Policy Library & Development
      • Security Awareness Training
      • Incident Response Plan Development
    • Compliance
      • PCI DSS Compliance
    • Security Engineering
      • Microsoft Copilot Security Services
      • External Attack Surface Management (EASM)
      • CIS Based Security Assessment
      • Risk Based Threat Assessment
      • Cloud Assessment Services
      • HALOCK Industry Threat HIT Index
      • Sensitive Data Scanning
      • Compromise Assessment
    • Incident Response and Forensic Services
      • Live Breach Response & Forensic Services
      • Incident Response Readiness as a Service (IRRaaS)
      • Compromise Assessment
  • Products
  • Industries
    • Communications
    • Cloud Based
    • Education
    • Energy Utilities
    • Financial Services
    • Gambling Businesses
    • Government
    • Healthcare
    • IT Cyber Security
    • Manufacturing
    • Media And Entertainment
    • Nonprofit
    • Payments
    • Retail
    • Startups
    • Supply Chain
    • Transportation
  • Resources
    • Blog – Cyber Security Articles
    • Reference Materials
    • InfoSec Tip Posters
    • Client Security Briefing
    • On-Demand Webinars
    • eNewsletters
    • HALOCK Media Room
  • About Us
    • Why HALOCK?
    • Our Team
    • Careers
    • HALOCK News
    • Events
    • HALOCK in the Press
    • Blog
  • Contact Us

emergency phone
  • Services
    • Artificial Intelligence (AI) Security
      • AI Risk Assessment
      • CCPA Privacy Risk Assessment
      • Microsoft Copilot Security
    • Offensive Security (Pen Testing, Adversarial Test, Application Test)
      • Application Testing
      • Adversarial Testing
      • Penetration Testing
    • Governance and Risk Management
      • Risk Assessments
      • Governance and Risk Solutions
      • CISO & vCISO Advisory
      • CIS RAM Consulting
      • DoCRA Services
    • Security Management
      • Policy Library & Development
      • Security Awareness Training
      • Incident Response Plan Development
    • Compliance
      • PCI DSS Compliance
    • Security Engineering
      • Microsoft Copilot Security Services
      • External Attack Surface Management (EASM)
      • CIS Based Security Assessment
      • Risk Based Threat Assessment
      • Cloud Assessment Services
      • HALOCK Industry Threat HIT Index
      • Sensitive Data Scanning
      • Compromise Assessment
    • Incident Response and Forensic Services
      • Live Breach Response & Forensic Services
      • Incident Response Readiness as a Service (IRRaaS)
      • Compromise Assessment
  • Products
  • Industries
    • Communications
    • Cloud Based
    • Education
    • Energy Utilities
    • Financial Services
    • Gambling Businesses
    • Government
    • Healthcare
    • IT Cyber Security
    • Manufacturing
    • Media And Entertainment
    • Nonprofit
    • Payments
    • Retail
    • Startups
    • Supply Chain
    • Transportation
  • Resources
    • Blog – Cyber Security Articles
    • Reference Materials
    • InfoSec Tip Posters
    • Client Security Briefing
    • On-Demand Webinars
    • eNewsletters
    • HALOCK Media Room
  • About Us
    • Why HALOCK?
    • Our Team
    • Careers
    • HALOCK News
    • Events
    • HALOCK in the Press
    • Blog
  • Contact Us

Keeping Track of PCI DSS v4.0

  • View Larger Image Green Credit Card PCI DSS reasonable security

UPDATED AS OF JULY 2021

 

UPDATE: New Blog on PCI DSS 4.0

Get updates on the status on PCI DSS review of the 2019 RFC comments, when the final version of PCI DSS is planned to be completed, timing of the next request for comments (RFC), and information about the RFC feedback they received. The new blog covers timing of supporting documents, transition between PCI DSS v3.2.1 and v4.0, an explanation of “future-dated requirements,” development and transition timelines for the project and more.

 

v4.0 Schedule Timeline PCI

Image source: PCI DSS site

 

 

PCI DSS Requirements

PCI DSS Requirement 5.4.1: Anti-spoofing controls such as DMARC, which stands for Domain-based Message Authentication, Reporting and Conformance, Sender Policy Framework (SPF), and Domain Keys Identified Mail (DKIM) can help stop phishers from spoofing the entity’s domain and impersonating personnel. 

Clarification on eCommerce Outsourcing PCI DSS requirements 6.4.3 and 11.6.1

Unpacking the New PCI DSS Password Standards

Is Your Organization Prepared for PCI DSS Automation – Requirement 10.4.1.1?

What is the PCI DSS v4 Authenticated Scanning Mandate – Requirement 11.3.1.2?

What is the PCI DSS v4.0.1 Requirement for PoLP – Requirement 7.2.5?

PCI SSC Updates SAQ A: Removal of Key eCommerce Security and New Eligibility Criteria – Requirements 6.4.3, 11.6.1, 12.3.1

The New PCI DSS v4.0.1 Software Catalog Mandate – Requirement 6.3.2

How PCI DSS 4.0.1 Tackles Service Account Vulnerabilities – Requirements 8.6.1, 7.2.5.1, 8.6.2, 8.6.3, 10.2.1.2

Are You Keeping an Inventory of Cipher Suites and Certificates for the New PCI DSS – Requirements 12.3.3, 4.2.1.1?

How to Analyze An Attestation of Compliance (AOC)

 

INFORMATION SECURITY PRIMERS

Managing IoT Risk: A Primer

Primer on Post-Quantum Cryptography (PQC)

Primer on Cloud Security

A Primer for AI Legislation and Litigation: Trends and Resources

A Primer to Frictionless Authentication

A Primer to Russian Intelligence “Snake” Malware

A Primer to Security Access Service Edge (SASE)

A Primer to Digital Risk Protection Services (DRPS)

A Primer to Containerization

A Primer to Cloud Access Security Brokers (CASB)

A Primer to Zero Trust Security

A Primer to Deception Technology

Managing AI Risks in Organizational Adoption and Usage

What are DeepFakes?

 

Cindy Kaplan2025-06-19T14:49:05+00:00Tags: PCI, PCI DSS, PCI DSS v4.0|

BLOG CATEGORIES

  • Artificial Intelligence (AI)
  • Bug Reports
  • Case Study
  • Checklists
  • Cloud Security Insights
  • Compromise Assessments
  • Cyber Insurance
  • Duty of Care Risk Assessment (DoCRA)
  • Education
  • Emerging Solutions & Trends
  • Enewsletters
  • Events
  • Exploit Insider
  • Financial
  • Gambling
  • Governance & Risk Management
  • HALOCK
  • HALOCK Breach Bulletin
  • HALOCK Helps
  • HALOCK Investigates
  • HALOCK Pandemic Breach Bulletin
  • HALOCK Radio
  • Healthcare
  • HIPAA Compliance
  • Incident Response
  • Industry Verticals
  • Infosec Industry Reports
  • ISO 27001
  • Modern Malware
  • Past Events
  • PCI Compliance
  • Penetration Testing
  • Posters
  • Primers
  • Privacy
  • Reasonable Security | Reasonable Risk
  • Regulation & Litigation
  • Retail
  • Risk Assessments
  • Securities and Exchange Commission (SEC)
  • Security Approaches & Methods
  • Security Awareness
  • Security Breach
  • Security Briefing
  • Security Briefing Solutions
  • Security Incidents
  • Security Incidents
  • Security Industry Reports
  • Security Privacy Risk
  • Security Ransomware
  • Sensitive Data
  • Standards & Frameworks
  • Templates & Tools
  • Third-Party Risk & Vendor Risk Management
  • Transportation
  • Uncategorized
  • Vulnerability Management
  • What's New & Tech
  • WorkForce

Incident Response Hotline: 800-925-0559

cybersecurity managementSubscribe to Our Newsletter

© 2025 HALOCK. All rights reserved.
Privacy Policy      Terms of Use     Site Map

blue Halock logo
1834 Walden Office Square, Suite 200
Schaumburg, IL 60173
847-221-0200
Page load link
Go to Top