Deny direct Internet access to databases that store restricted data or information.

UCF ID: 01271
Control Type: Process or Activity
Status: Live

Supporting and supported controls

This control directly supports:

    Configure firewalls, routers, and networking equipment to protect restricted data or information in accordance with organizational compliance mandates. [UCF Control ID 01284]

There are no supporting controls.

Authority documents complied with:

MasterCard Electronic Commerce Security Architecture Best Practices, April 2003, § 3-10

Payment Card Guidance

Do not store cardholder data on a Web server. [§ 3-10, MasterCard Electronic Commerce Security Architecture Best Practices, April 2003]


Copyright 2005-2009 Unified Compliance Framework™. All rights reserved.


Site and content © Copyright 2003-2009 Network Frontiers, LLC. All rights reserved.