Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- PCI Compliance Best Practices
- PCI compliance is a moving target - it is dynamic, as is any security measure the organization undertakes. While many companies are struggling for solutions to pass an audit, the parameters of PCI are changing. Companies who didn't realize they were affected by PCI discover they are. Areas of the...
- Tags: Security, PCI Compliance, PCI, Storage, Hardware
- Webcasts 2009-01-01
- PCI Compliance gets clarified and neutered (further)
- PCI Compliance gets clarified and neutered furtherStraw man argumentI think you are missing something, namely the first part of the section that you just quoted: [i]Having all custom application code reviewed for common vulnerabilities by an organization that specializes in application security[/i]I'll be the first to acknowledge that I know...
- Tags: PCI Standard, PCI, WAF, PCI compliance
- Discussion threads 2008-04-17
- PCI Compliance gets clarified and neutered (further)
- At one point, I thought that PCI certification was a great thing. Now I realize that it's not really about security at all... it's about money and responsibility and transferring ownership of risk. The PCI certification just got a clarification: "6.6 Ensure that all web-facing applications...
- Tags: Web, XSS, PCI, Web Application, TV, Attack, PCI Compliance, Web Application Firewalls, WAF, Security, Nathan McFeters
- Blog posts 2008-04-17
- The Payment Card Industry Compliance - Securing Both Merchant and Customer Data
- This white paper introduces the Payment Card Industry Compliance standard, and the security threats which brought about the need to standardize the data protection of both merchants and customers. The internet is no longer just a source of information, but it is a trading universe where thousands of credit and...
- Tags: Acunetix, Card, Debit Card, Finance, Financial, Financial Accounting, Financial Services, Payment, PCI Compliance, Security
- White papers 2007-05-01
- Is Your WLAN Putting Your PCI Compliance at Risk?
- The Payment Card Industry PCI Data Security Standard was created in 2004 by major credit card companies - American Express, Discover Financial, JCB, MasterCard Worldwide, and Visa International - to provide security and privacy of customers' credit card data and personal information. The PCI standard sets specific guidelines for the...
- Tags: Credit Card, WLAN, Colubris Networks Inc., PCI Compliance, Sales Channel, Financial Services, Retail, PCI, Sales, Storage, Hardware
- White papers 2007-04-12
- Achieving PCI Compliance For: Privileged Password Management & Remote Vendor Access
- Though PCI compliance is not a government driven requirement such as Sarbanes Oxley and HIPAA, noncompliance under PCI can have a devastating impact on any enterprise that relies on credit card transactions. The contract with credit card companies requires that as an organization one complies with PCI. Non-compliance with PCI...
- Tags: Password Management, Password, Microsoft Access, e-DMZ Security, PCI Compliance, PCI, Storage, Hardware
- White papers 2007-04-01
- PCI compliance: Don't become another headline
- PCI compliance: Don't become another headlineHas this standard been in place for the last 6 months...?How different is this than what the industry required before...?How much does mom and pop need to know at the point of sale...?It looks like the standards are written to evolve as technology evolves and...
- Tags: Quality, PCI compliance, PCI
- Discussion threads 2005-08-09
Additional Resources
- End-to-end encryption is the key to protecting data and reputations
- In order to avoid the financial and brand damage associated with data breaches, businesses need to consider deploying end-to-end encryption as a tamper proof way of securing data. Commentary - Media outlets around the globe highlight new data breaches at an alarmingly regular rate. Forrester estimates that the cost...
- Tags: PCI, Organization, Data Breach, PCI DSS, Encryption Key, encryption, security, Paul Meadowcroft Thales, Special to ZDNet, Paul Meadowcroft, Thales, Special to ZDNet
- News items 2009-11-11
- PCI DSS Compliance in the UNIX/Linux Datacenter Environment
- This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard PCI DSS by limiting and tracking authorization to execute commands and programs that access servers and applications storing and using proprietary cardholder. BeyondTrust PowerBroker provides an auditable process that controls, monitors and records that access.
- Tags: Data Center, Unix, BeyondTrust, BeyondTrust PowerBroker, PCI, Data Centers, Linux, Storage, Hardware, Data Management, Operating Systems, Software
- White papers 2009-10-14
- TechGuard keeps spam and botnets at bay with one-click, enterprise-level security for SMBs, SOHOs
- One of the most difficult things for a small or medium business to do is set up a security scheme that's effective, affordable and intelligible to the average employee. Chesterfield, Mo. and Baltimore, Md.-based TechGuard is attempting to address that problem by bringing its enterprise and government-level...
- Tags: Security, Firewall, Network, SOHO, Small And Medium Business, TechGuard, SM, Smb/Sme, Andrew Nusca
- Blog posts 2009-10-13
- Come together, right now, over...security
- Dont Trust The Cloud - Ever!People who think their data is safely being backed up into "the cloud" because - oh I dont know, for whatever fruity reasons they have, will suffer the consequences that many of us have learned already. Dont trust your data anywhere out of your...
- Tags: security, Dont
- Discussion threads 2009-09-22
- Using Configuration Control to Meet Compliance and Improve Operations
- CAPITAL Card Services, Inc. is a leading servicer of MasterCard and Visa accounts for financial and non-financial institutions nationwide. The challenge was to become compliant with various regulations, including PCI, to increase and enforce change management processes and discipline and to reduce unplanned work. Tripwire Enterprise provides configuration control to...
- Tags: Compliance, Tripwire, Tripwire Enterprise, Change Management, Strategy, Tools & Techniques, Management
- Case studies 2009-09-19
- Tripwire Rings Up Compliance and Fuels Efficiency for This Busy Regional Company
- Starting as a refinery outlet in 1952, Wesco has grown to a regional company that includes wholesale energy division, filling stations, convenience stores, distribution center, training facility and bakery. The challenge was to become PCI compliant with minimal impact to IT staff, to increase and enforce change management processes and...
- Tags: Compliance, Tripwire, Tripwire Enterprise, PCI, Change Management, Workforce Management, Training And Certification, Storage, Hardware, Tools & Techniques, Management, Human Resources
- Case studies 2009-09-19
- Tripwire Proves Configuration Control Is a Best Seller With Auditors and IT
- Since 1995, MarketLive, Inc. has focused exclusively on providing enterprise-class e-commerce retail technology and services that help mid-sized businesses successfully sell goods and services online. The challenge was to deliver a single PCI compliant solution that serves all clients, to improve change control processes and to reduce unplanned work caused...
- Tags: Information Technology, Tripwire, Tripwire Enterprise, PCI, File Servers, Storage, Hardware, Enterprise Software, Software
- Case studies 2009-09-19
- Tripwire Security Case Study: Aria System
- Aria Systems is the leading provider of subscription billing solutions and offers the only "Monetization Platform" encompassing the full spectrum of Billing and Customer Lifecycle Management services. The challenge was to demonstrate PCI DSS compliance as a Level 1 Merchant, to implement PCI solution quickly and without additional staff and...
- Tags: Security, Billing, Tripwire, PCI, Server Virtualization, Storage, Hardware, Servers, Virtualization
- Case studies 2009-09-19
- What Is the Payment Card Industry Data Security Standard (PCI DSS)?
- The processor typically sends out one or more letters, and follows up with phone calls. In the authors interviews with merchants, they usually tell the processor as little as possible. The processor shares the desire to get the task completed as quickly as possible. As a result, the merchants often...
- Tags: Payment, PCI, Industry, Data Security, Merchant, Kreck Design Solutions, Processors, Semiconductors, Hardware, Components
- White papers 2009-09-16
- Regulatory Compliance: Protecting PCI Systems and Data
- The Payment Card Industry PCI computer systems are continually under attack due to the importance of the information they protect. In response to this threat, the PCI has produced an excellent series of process and security tool requirements known as the Data Security Standard DSS. The DSS identifies a series...
- Tags: Payment, PCI, Regulatory Compliance, CoreTrace, Payment Card Industry Computer System, Data Security Standard, Operational Accounting, Security, Finance
- White papers 2009-09-15
- Reducing the Cost of Achieving PCI Compliance with Lumension Compliance and IT Risk Management
- Reducing the Cost of Achieving PCI Compliance with Lumension® Compliance and IT Risk Management Organizations across the globe are required to demonstrate PCI compliance to ensure that cardholder data is protected and secure from numerous internal and external threats. The challenge for most organizations is that demonstrating compliance is...
- Tags: Information Technology, Compliance, PCI, Lumension Security Inc.
- White papers 2009-09-12
- Virtualization: a good idea but still some growing pains to consider
- It's a solution in search of a problemHow on earth is virtualization going to reduce complexity? The only way to reduce complexity is to use *one* platform of course.[Repeat]How on earth is virtualization going to increase security? The holes in windows will still be there, won't they?This shouldn't sell.Show me...
- Tags: cloud computing, Storage management, Utility computing, Servers, virtualization, server, security, VMware Inc.
- Discussion threads 2009-09-02
- Achieving PCI Compliance with Red Hat Enterprise Linux
- The payment card industry data security standard PCI DSS provides best practice security standards that protect systems that handle credit and debit card data. Red Hat solutions are PCI-compliant, with plans to expand and enhance systems and tools that enable adherence to PCI standards and the use of innovative...
- Tags: Enterprise Linux, Red Hat Enterprise Linux, Linux, Red Hat Inc., PCI, Open Source, Storage, Hardware
- White papers 2009-09-01
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
> Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
