Foregenix Blog Introduction of new requirements (6.4.3 and 11.6.1) for PCI DSS v4.0

This guidance is designed for any organisation seeking to comply with the new requirement 11.6.1 and 6.4.3 introduced in PCI DSS v4.0 while implementing PCI DSS in their environment. The suggestions outlined in this document are applicable to entities of all sizes, enabling them to assess the system components that should adhere to PCI DSS requirements. However, it is important to note that this guidance does not cover PCI DSS compliance itself.  This guidance offers valuable information for individuals such as merchants, acquirers, issuers, service providers, and others who are accountable for fulfilling the PCI DSS requirements for their businesses.  Acquirers who are assessing the PCI DSS Reports on Compliance or Self-Assessment Questionnaires of merchants or service providers can find useful insights in this document.  The purpose of this document is to offer additional information. It is important to note that the information provided here does not override or replace any requirements stated in the PCI SSC Standard.