Exam QSA_New_V4 Topic 3 Question 68 Discussion
Actual exam question for PCI SSC's QSA_New_V4 exam
Question #: 68
Topic #: 3
Question #: 68
Topic #: 3
Which statement is true regarding the presence of both hashed and truncated versions of the same PAN in an environment?
Suggested Answer: A Vote an answer
* Hashing and Truncation
* PCI DSS Requirement 3.4 mandates protecting stored PAN using methods like hashing and truncation. If both versions coexist, controls must ensure they cannot be combined to reconstruct the original PAN.
* Incorrect Options
* Option B: Truncation is unrelated to hashed PANs.
* Option C: Correlation of hashed and truncated versions to identify the PAN violates PCI DSS principles.
* Option D: Coexistence of hashed and truncated PANs is permissible if proper controls are in place.
* PCI DSS Requirement 3.4 mandates protecting stored PAN using methods like hashing and truncation. If both versions coexist, controls must ensure they cannot be combined to reconstruct the original PAN.
* Incorrect Options
* Option B: Truncation is unrelated to hashed PANs.
* Option C: Correlation of hashed and truncated versions to identify the PAN violates PCI DSS principles.
* Option D: Coexistence of hashed and truncated PANs is permissible if proper controls are in place.
by Regan at Jun 25, 2026, 07:12 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).