Package com.cloudforgeci.api.core.rules

Class PciDssRules

java.lang.Object

com.cloudforgeci.api.core.rules.PciDssRules

All Implemented Interfaces:

FrameworkRules<SystemContext>

@ComplianceFramework(value="PCI-DSS",
                     priority=20,
                     displayName="PCI DSS v4.0.1",
                     description="Validates PCI DSS v4.0.1 requirements for cardholder data protection")
public class PciDssRules
extends Object
implements FrameworkRules<SystemContext>

PCI-DSS compliance validation rules. These rules enforce PCI-DSS requirements for environments processing cardholder data. PCI-DSS Requirements Coverage: - Requirement 1: Install and maintain a firewall configuration - Requirement 2: Do not use vendor-supplied defaults - Requirement 3: Protect stored cardholder data - Requirement 4: Encrypt transmission of cardholder data - Requirement 6: Develop and maintain secure systems - Requirement 7: Restrict access to cardholder data by business need to know - Requirement 8: Identify and authenticate access to system components - Requirement 10: Track and monitor all access to network resources - Requirement 11: Regularly test security systems and processes

Constructor Summary

Constructors

Constructor	Description
PciDssRules()

Method Summary

Modifier and Type	Method	Description
String	generateComplianceReport(SystemContext ctx)	Generate PCI-DSS compliance report showing which requirements are met.
void	install(SystemContext ctx)	Install PCI-DSS compliance validation rules.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface com.cloudforge.core.interfaces.FrameworkRules

alwaysLoad, description, displayName, frameworkId, priority

Constructor Details

PciDssRules

public PciDssRules()

Method Details

install

public void install(SystemContext ctx)

Install PCI-DSS compliance validation rules. PCI-DSS applies to environments processing cardholder data. Only enforced when security profile is PRODUCTION.

Specified by:

install in interface FrameworkRules<SystemContext>

Parameters:

ctx - the system context containing deployment configuration and CDK stack

Since:

3.0.0

generateComplianceReport

public String generateComplianceReport(SystemContext ctx)

Generate PCI-DSS compliance report showing which requirements are met.