pci dss
Payment Card Industry - Data Security Standard (PCI-DSS) v3.1 provides an industry standard for data security requirements and procedures. Although keystone deals with sensitive data (primarily passwords), it has not made any attempt to provide PCI-compliant tools to deployers for fear of re-implementing more mature identity management solutions. At the same time, deployers are taking on the additional burden of either deploying those fully featured identity management solutions just to support keystone, or are re-implementing these behaviors on top of keystone without community support.
Blueprint information
- Status:
- Complete
- Approver:
- Steve Martinelli
- Priority:
- High
- Drafter:
- Dolph Mathews
- Direction:
- Approved
- Assignee:
- Ron De Rose
- Definition:
- Approved
- Series goal:
- Accepted for newton
- Implementation:
- Implemented
- Milestone target:
- newton-3
- Started by
- Steve Martinelli
- Completed by
- Samuel de Medeiros Queiroz
Related branches
Related bugs
Sprints
Whiteboard
Gerrit topic: https:/
Addressed by: https:/
PCI-DSS Password SQL model changes
Addressed by: https:/
PCI-DSS Password strength requirements
Addressed by: https:/
PCI-DSS Password history requirements
Addressed by: https:/
PCI-DSS Disable inactive users requirements
Addressed by: https:/
PCI-DSS Password expires validation
Addressed by: https:/
PCI-DSS Adds password_expires_at to API docs
Addressed by: https:/
PCI-DSS Lockout requirements
Gerrit topic: https:/
Addressed by: https:/
PCI-DSS Adds password_expires_at to API specs
Addressed by: https:/
Address follow on comments 328447
Gerrit topic: https:/
Addressed by: https:/
PCI-DSS Minimum password age requirements
Addressed by: https:/
PCI-DSS Limit password changes per day
Gerrit topic: https:/
Addressed by: https:/
Use %()d for integer substitution
Addressed by: https:/
Password expires ignore user list
Addressed by: https:/
Fix nits in PCI-DSS Minimum password age requirements
Gerrit topic: https:/
Gerrit topic: https:/
Addressed by: https:/
PCI-DSS Force users to immediately change their password upon first use