top of page
6.3 PCI DSS (v3.2.1)
Compliance Standard
Compliance Version
Control ID
PCI DSS
(v3.2.1)
6.3
Requirement 6: Develop and maintain secure systems and applications
(v3.2.1)
Develop internal and external software applications (including web-based administrative access to applications) securely, as follows:
• In accordance with PCI DSS (for example, secure authentication and logging)
• Based on industry standards and/or best practices.
• Incorporating information security throughout the software-development life cycle
Note: This applies to all software developed internally as well as bespoke or custom software developed by a third party.
bottom of page