Bird
0
0

A developer wrote code to store cardholder data without encryption. What is the PCI DSS violation here?

medium🧠 Conceptual Q6 of 15
Cybersecurity - Compliance and Governance
A developer wrote code to store cardholder data without encryption. What is the PCI DSS violation here?
AFailure to monitor network traffic
BFailure to restrict physical access
CFailure to protect stored cardholder data
DFailure to use antivirus software
Step-by-Step Solution
Solution:

  1. Step 1: Identify the PCI DSS requirement violated by unencrypted storage

    PCI DSS requires encryption to protect stored cardholder data (Requirement 3).

  2. Step 2: Match the violation to the correct description

    Storing data without encryption violates the protection of stored cardholder data.

  3. Final Answer:

    Failure to protect stored cardholder data -> Option C

  4. Quick Check:

    Unencrypted storage = Failure to protect data [OK]
Quick Trick: Unencrypted storage breaks PCI DSS data protection rules [OK]
Common Mistakes:
MISTAKES
  • Confusing physical access with data encryption
  • Ignoring encryption importance

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More Cybersecurity Quizzes
Digital Forensics - Log forensics - Quiz 9hard Digital Forensics - Why forensics preserves evidence - Quiz 5medium Digital Forensics - Disk imaging and analysis - Quiz 9hard Digital Forensics - Network forensics - Quiz 1easy Digital Forensics - Memory forensics basics - Quiz 3easy Emerging Security Topics - Supply chain security - Quiz 14medium Incident Response - Containment strategies - Quiz 15hard Incident Response - Incident response lifecycle - Quiz 11easy Incident Response - Why incident response plans save organizations - Quiz 4medium Security Architecture and Design - Security design patterns - Quiz 5medium