FAQ #1253 - Does hashing of passwords meet the intent of PCI DSS requirement 8.4?

FAQ #1253 Published Version: 23 Jul 2013, 00:00

Does hashing of passwords meet the intent of PCI DSS requirement 8.4?

Using a strong hashing algorithm to hash the password meets the intent of the PCI DSS requirement 8.4, which is to prevent unintentional disclosure of the passwords through such means as network sniffing.

View all versions Back to recent changes