We notice you are visiting from a U.S. Internet provider. 
09/03/2010 -
Though there are many requirements set forth by the PCI DSS, one of the most important is access restriction.At least that is the belief of Abhilash Sonwane, vice president of product management for unified threat management appliance provider Cyberoam.
In a recent interview with Computer World's security columnist Amir Lev, Sonwane discussed the importance of creating access controls that effectively link true user identity to access permission.
Doing so is important, said Sonwane, because businesses "need to be able to easily make dynamic changes to security policies - while accounting for user movement in the network - and maintain visibility into network access by individual users. This enables enterprises to modify the user access policies for tighter security controls and to prevent probable security breaches."
Sonwane also noted that access control is particularly important for businesses that have users sharing workstations, such as retailers and hotels.
A recent survey of Qualified Security Assessors by the Ponemon Institute seemed to validate this opinion, finding that most QSAs believe access restriction to be the most important - yet least practiced - element of payment processing security.
