Which of the following best defines the Cardholder Data Environment (CDE) in the context of PCI DSS?
-
A
Any system that connects to the internet and processes financial transactions
-
B
The people, processes, and technology that store, process, or transmit cardholder data or sensitive authentication data
-
C
Only the servers that store primary account numbers (PANs) in encrypted form
-
D
The network segment that hosts the organization's payment gateway exclusively