pci security standard

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Payment Card Industry Security Standards

PCI security standards are technical and operational requirements set by the Payment Card Industry Security Standards Council to protect cardholder data. The standards globally govern all merchants and organizations that store, process or transmit this data - with new requirements for software developers and manufacturers of applications and devices used...

Tags: Security, Payment, Industry, Security Standard, PCI Security Standards Council, PCI Security Standard, Payment Application, Operational Accounting, Finance

White papers 2008-06-01

PCI security standard endangers wireless LANs

PCI security standard endangers wireless LANsI see no problem with SSID hidingThe real problem is that the SSID probe request contains enough information to facilitate offline cracking.The SSID probe request will always be there, if it's insecure, then make it secure!Users will always use urban legend security sometimes in addition...

Tags: Wi-Fi, Retail, LANs, SSID, PCI, security, wireless, wireless lan, LAN, retail company, PCI security standard

Discussion threads 2008-03-11

PCI security standard endangers wireless LANs

With wireless penetration tools like KARMA and the new FreeRADIUS-WPE, users who are using urban legend security and enterprise wireless LANs are more vulnerable than ever. One of the biggest threats facing wireless LAN users is SSID probing which is forced by the reckless usage of SSID broadcast suppression....

Tags: Security, LAN, SSID, PCI, WLAN, Security Standard, PCI Security Standard, Wi-Fi, Wireless, George Ou

Blog posts 2008-03-11

Additional Resources

End-to-end encryption is the key to protecting data and reputations

In order to avoid the financial and brand damage associated with data breaches, businesses need to consider deploying end-to-end encryption as a tamper proof way of securing data. Commentary - Media outlets around the globe highlight new data breaches at an alarmingly regular rate. Forrester estimates that the cost...

Tags: PCI, Organization, Data Breach, PCI DSS, Encryption Key, encryption, security, Paul Meadowcroft Thales, Special to ZDNet, Paul Meadowcroft, Thales, Special to ZDNet

News items 2009-11-11

PCI DSS Compliance in the UNIX/Linux Datacenter Environment

This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard PCI DSS by limiting and tracking authorization to execute commands and programs that access servers and applications storing and using proprietary cardholder. BeyondTrust PowerBroker provides an auditable process that controls, monitors and records that access.

Tags: Data Center, Unix, BeyondTrust, BeyondTrust PowerBroker, PCI, Data Centers, Linux, Storage, Hardware, Data Management, Operating Systems, Software

White papers 2009-10-14

Come together, right now, over...security

Dont Trust The Cloud - Ever!People who think their data is safely being backed up into "the cloud" because - oh I dont know, for whatever fruity reasons they have, will suffer the consequences that many of us have learned already. Dont trust your data anywhere out of your...

Tags: security, Dont

Discussion threads 2009-09-22

What Is the Payment Card Industry Data Security Standard (PCI DSS)?

The processor typically sends out one or more letters, and follows up with phone calls. In the authors interviews with merchants, they usually tell the processor as little as possible. The processor shares the desire to get the task completed as quickly as possible. As a result, the merchants often...

Tags: Payment, PCI, Industry, Data Security, Merchant, Kreck Design Solutions, Processors, Semiconductors, Hardware, Components

White papers 2009-09-16

Regulatory Compliance: Protecting PCI Systems and Data

The Payment Card Industry PCI computer systems are continually under attack due to the importance of the information they protect. In response to this threat, the PCI has produced an excellent series of process and security tool requirements known as the Data Security Standard DSS. The DSS identifies a series...

Tags: Payment, PCI, Regulatory Compliance, CoreTrace, Payment Card Industry Computer System, Data Security Standard, Operational Accounting, Security, Finance

White papers 2009-09-15

802.11n approved; Not 'new' and hardly groundbreaking

I'm moving to itWell, if all you do is check email and write blog posts all day - then yeah, g is fine.BUT - if you ever intend on watching high-def video or play games, then even g is not enough. You'll want n.WiMAX is interesting, BUT:-No computer we have...

Tags: Wi-Fi, Wireless and Mobility, NETWORKING, N-Router, WPA-PSK, wireless, IEEE 802.11n, Netgear Inc., network

Discussion threads 2009-09-14

Achieving PCI Compliance with Red Hat Enterprise Linux

The payment card industry data security standard PCI DSS provides best practice security standards that protect systems that handle credit and debit card data. Red Hat solutions are PCI-compliant, with plans to expand and enhance systems and tools that enable adherence to PCI standards and the use of innovative...

Tags: Enterprise Linux, Red Hat Enterprise Linux, Linux, Red Hat Inc., PCI, Open Source, Storage, Hardware

White papers 2009-09-01

Alleged TJX hacker spun a wide web of cybercrime

Just goes to show no one's doing their homeworkWe keep pushing computerized systems out further and further into important aspects of our lives, and yet the security portion isn't baked in and is really an afterthought. Put a national security slant on all of this, and the possibilities are...

Tags: Hacking, PCI Standard, wide Web, hacker, cybercrime, Web, security

Discussion threads 2009-08-18

The How and Why of PCI

Companies that offer online credit card transactions must understand and follow Payment Card Industry PCI standards, particularly the Data Security Standard DSS. This standard includes comprehensive requirements to secure and protect electronic payments, and to assure the privacy of customer account information. Compliance involves building and maintaining a secure network,...

Tags: PCI, MessageLabs Ltd., Operational Accounting, Security, Financial Services, Finance

White papers 2009-08-01

RSA SecurID Helps NTT Europe Online Meet PCI DSS Compliance

NTT Europe Online NTTEO provides managed hosting, security and application management services to enterprises globally. NTTEO wanted to become fully Payment Card Industry Data Security Standard PCI DSS compliant in all areas of its business, from its datacentres through to HR procedures and to meet one of the 150 PCI...

Tags: RSA Security Inc., Two-factor Authentication, NTT Corp., RSA SecurID, PCI, Security Administration, Application Performance Management, Digital Security, It Services, Storage, Hardware, Security

Case studies 2009-08-01

PA-DSS Compliance and Commerce Toolkit for Applications

In 2004, the payment card brands aligned their individual cardholder data protection programs to create the Payment Card Industry Data Security Standard PCI DSS This alignment in standards provides an industry-wide framework that forms the basis of each association's individual security programs The objective of the individual programs is to...

Tags: Payment, IP, IP Commerce, Operational Accounting, PCI, Finance, Storage, Hardware

White papers 2009-07-21

Get the facts about credit card security and PCI compliance

There's no way around it. No matter what size your business is or what industry you work in, if you accept credit cards, you must adhere to the safeguards mandated by the Payment Card Industry Data Security Standard—referred to as the PCI DSS. Learn how to make sure you're compliant...

Tags: Security, Credit Card, Compliance, IBM Corp., PCI, Sales Channel, Financial Services, Storage, Hardware, Sales

White papers 2009-07-17

Chip and PIN and the PCI Data Security Standard

Chip and PIN is a British government-backed initiative to implement the Europay, MasterCard and Visa EMV standard for credit cards with a built-in Integrated Circuit IC, also known as IC Cards or Chip and PIN. The purpose of Chip and PIN was to reduce the amount of fraud in face-to-face...

Tags: Credit Card, PCI, Chip, RSM McGladrey, PIN, Semiconductors, Network Technology, Hardware, Networking

White papers 2009-07-13

Paglo SaaS offering provides means to harness untamed collection of log and IT resources data

Paglo, the IT management software-as-a-service SaaS company, recently announced a new low-cost service that allows companies to tackle the Herculean task of trying to winnow out a rapidly growing mountain of log data. With log data piling up in terabyte leaps and increasing regulatory pressure to maintain...

Tags: Security, Software-as-a-service, Performance, Information Technology, Service, Paglo Logs, Log Management Service, Software As A Service (SaaS), Managed Hosting, Cloud Computing, Performance Management, Emerging Technologies, Human Resources, Workforce Management, Dana Gardner

Blog posts 2009-07-09

Product Capability Assurance Report Payment Card Industry Data Security Standard v.1.2

This paper helps both merchants and QSAs by identifying where a specific product or family of products has the capability to satisfy or help to satisfy one or more of the individual PCI DSS requirements. Armed with this information, merchants and QSAs can better determine where additional products or compensatory...

Tags: Fortinet Inc., Payment, Industry, Data Security, PCI, Operational Accounting, Storage, Hardware, Finance

White papers 2009-07-07

Audit Readiness for PCI (Payment Card Industry) Data Security Standard Compliance

Retailers that fail Payment Card Industry Data Security Standard PCI DSS audits can be fined up to $500,000. Additional penalties can range from increased audit requirements to retraction of credit card processing privileges. Generally, retailers that process over 20,000 credit card transactions per year must fill out an annual self-assessment...

Tags: Payment, Audit, Credit Card, Compliance, Retail Company, PCI, Industry, Credit Card Transaction, Data Security, Financial Accounting, Financial Services, Sales Channel, Finance, Sales

White papers 2009-07-01

TechNet Webcast: Best Practices for Security With SQL Server 2008 and SafeNet Luna HSM Support (Level 300)

Emerging industry compliance standards, such as the Health Insurance Portability and Accountability Act HIPAA and Payment Card Industry Data Security Standard PCI DSS, require that data be secure at rest. Requirement three of the PCI DSS requires the encryption of any stored card holder data. The attendee of this webcast...

Tags: Webcast, Microsoft SQL Server, Best Practice, SafeNet Inc., Microsoft TechNet, Microsoft SQL Server 2008, Hipaa, Regulatory Compliance, Security, Regulations, Healthcare, Government, Human Resources, Policies And Procedures

Webcasts 2009-06-18