Well, last week saw the passage of June 30, 2010. Do you know where your WEP is?
For those of you subject to PCI DSS, you are no longer allowed to use WEP to “protect” your in-scope networks (Requirement 4.1.1, in the italics). Remember when PCI DSS 1.2 came out and you thought you had plenty of time? Hopefully you planned well.
I have not run into too much WEP on in-scope networks in the last year or so. I still see it in retail locations for inventory control or other types of wireless networking, but those are usually firewalled off from the POS environment.
Is anyone out there still using WEP?
Possibly Related Posts:
- Proofpoint Patches URL Sandbox Bypass Bug
- Improve Outbound Email with SPF, DKIM, and DMARC
- PCI Council Loses $600K in Revenue, PO Population on the Decline
- What’s the craic on KRACK?
- Why PCI DSS 4.0 Needs to be a Complete Rewrite