General

What is the PCI DSS tag?

The Payment Card Industry Data Security Standard is an information security standard for organizations that handle branded credit cards from major card schemes. The PCI Standard is mandated by the card brands but administered by the Payment Card Industry Security Standards Council;
(As per extracted from https://en.wikipedia.org/wiki/Payment_Card_Industry_Data_Security_Standard)

Holm Security's Tag functionality is meant to group assets, e.g., Public Servers or web applications. An asset can have any number of tags.

To answer the following, what is a PCI DSS tag? It is important also to understand the fundamental concept of tags whereby, there are two types of tags that you can apply:

  • Static Tag
    A static tag is a tag you manually apply to one or more assets. 
  • Dynamic Tag
    A dynamic tag is applied to assets based on a rule such as asset name contain (string matching), IP address in network range(s), open ports, and operating system.

    Please refer to this link for additional information about tags: https://support.holmsecurity.com/knowledge/what-is-a-tag-and-how-does-it-work

In our Scan Profile under Scan Network, by enabling the PCI DSS compliance tests, we will include the required areas for the framework in the scan and return the outcome in the scan results. All assets scanned with PCI compliance tests will automatically receive a PCI DSS tag that can not be removed later.

To enable PCI DSS compliance tests, please tick the check box: Enable PCI DSS compliance tests.