What does PCI DSS require regarding time synchronization for systems within the cardholder data environment?
-
A
Time synchronization is optional but recommended for forensic investigations
-
B
Only servers storing PANs require synchronized system clocks
-
C
All in-scope system components must use time synchronization technology
-
D
Time synchronization must be managed externally by the acquiring bank