PCI DSS Requirement 4.1: Use strong cryptography and security protocols - NIST SP 800-52 Rev. 2: Guidelines for TLS Implementations - CWE-326: Inadequate Encryption Strength