pci-dss Resources

Sponsored White Papers, Webcasts, and Downloads

ZDNet Resources

Security expert discusses a possible future for PCI-DSS... it's grim: Security expert discusses a possible future for PCI-DSS... it's grimSource code reviewsSource code reviews. As suggested they should not have to be applied to all software, but how do you decide what software requires what type of review and I know you hate this QA.If you are going to QA...; Tags: Tools & Techniques, QA, software, PCI-DSS, security; Discussion threads 2008-04-15
PCI-DSS Solutions From Novell: Millions of cases of identity theft, including a number of high-profile cases where large amounts of payment card data was stolen or compromised, have fueled an urgent industry-wide movement to tighten payment card data security. In response, the leading payment card companies have worked together to develop a new Payment...; Tags: Novell Inc., Payment, PCI-DSS, Operational Accounting, Finance; White papers 2007-05-01
Citrix Solutions for Complying With PCI-DSS: Ensuring Protection of Web Applications and Privacy of Cardholder Information: The Payment Card Industry Data Security Standard (PCI-DSS) is a global standard governed by the major credit card companies. The standard comprises a set of directives for entities that handle credit cards, with the goal of reducing fraud. PCI-DSS presents the framework for protecting sensitive cardholder and authentication data, providing...; Tags: Web Application, Citrix Systems Inc., Privacy, PCI-DSS, Firewalls, Security, Networking; White papers 2007-03-01

Additional Resources

PCIDIRECT (exe): PCIDIRECT is an advanced low-level PCI/PCI Express register access software utility for Windows. It allows user to read and modify PCI and PCI Express config space registers of all PCI and PCI Express devices. PCI Express (PCI-E) device enhanced configuration space registers can be accessed as well. Write To Hardware...; Tags: PCI Express, eProtek Systems, PCIDIRECT, PCI, Storage, Hardware; Software downloads 2008-07-22
ZT Affinity 7221Xa: The $600 ZT Affinity 7221Xa is the cheaper sibling of the recently reviewed ZT Affinity 7225Xi-35. Its fixed configuration includes most of what we expect to find in a system in this price range. Like the 7225Xi-35, the 7221Xa is geared toward those who need a simple desktop with basic...; Tags: Desktops, DVD, Flash memory, Memory, Consumer electronics, Microsoft Windows Vista (Longhorn), ZT Affinity 7221Xa, ZT Affinity 7225Xi-35; Product reviews 2008-07-17

Linux 2.6.26 kernel update released: Â Linus Torvalds quietly released another update to the Linux kernel over the weekend that offers better support for kernel-based virtual machines, a kernel debugger, improved webcam support and new support for the One Laptop Per Child architecture.Â Version 2.6.26 was released on Sunday, July 13. What's most...; Tags: Kernel, Linux, Open Source, Operating Systems, Software, Paula Rooney; Blog posts 2008-07-15
Remote code execution through Intel CPU bugs: Kris Kaspersky, author of numerous books on reverse engineering and software engineering, will be presenting his research on remote code execution through Intel CPU bugs at the upcoming Hack in the Box Security Conference in Malaysia. If his proof of concept code consisting of JavaScript or TCP/IP packet attacks on...; Tags: CPU, Intel Corp., Processors, Security, Semiconductors, Hardware, Components, Dancho Danchev; Blog posts 2008-07-14
NVIDIA: Let's spread the blame far and wide: NVIDIA: Let's spread the blame far and widePublically?"Well, since then the company’s stock has taken a serious battering, and the company doesn’t seem to be willing to talk about the problems with its GPUs publically."Publically is not a word. Publicly is.That aside, Nvidea is playing the blame game and not...; Tags: NVidia Corp., GPU, blame, supplier; Discussion threads 2008-07-08
News to know: Searching Silverlight; IE 8; Dell; Google vs. YouTube: Notable headlines: Mary Jo Foley: Microsoft: Silverlight content searchable, too Ryan Stewart: Brian Goldfarb talks about Silverlight 2 and Deep Zoom with Michael Cot LineRider releases a Silverlight 2 version Microsoft steps up self-policing of its OSI-approved source licenses ...; Tags: Apple iPhone, Security, Google Inc., Dell Computer Corp., Microsoft Silverlight, Mobile, YouTube Inc., Microsoft Internet Explorer, Microsoft Corp., Linux, UNIX, Keyboards, Operating Systems, Advertising & Promotion, Open Source, Software, Hardware, Peripherals, Marketing, Larry Dignan; Blog posts 2008-07-03
PCI-DSS 1.1 points to outdated OWASP Top 10: OK, I'm not going to freak out about this too bad... I've already pointed out enough problems with PCI, but I did find it morbidly entertaining.Â My good friend Jeremiah Grossman pictured at right blogged today about the PCI-DSS 1.1 section 6.5, which covers "prevention of common coding vulnerabilities in...; Tags: XSS, PCI, Security, Storage, Hardware, Nathan McFeters; Blog posts 2008-07-02
McAfee S.P.A.M. experiment and more ridiculous HackerSafe failures: McAfee S.P.A.M. experiment and more ridiculous HackerSafe failuresI get slammed for pronouncing the name wrong, but McAfee is the bestMcAfee is the only true voice on security. I have never once seen a computer with their AV software installed that has be overrun with viruses. If this is...; Tags: SECURITY, McAfee Inc., HackerSafe; Discussion threads 2008-07-02
McAfee S.P.A.M. experiment and more ridiculous HackerSafe failures: Stay with me here readers, I'm stringing two stories about McAfee together here, a little outÂ of the ordinary, so I hope it makes sense.Â If you aren't interested in the tech details of which there are very little, please do read forÂ a good laugh. Network World reported...; Tags: McAfee Inc., Organize-It, PCI, Phishing, Cyberthreats, Marketing Research, Storage, Hardware, Security, Spam And Phishing, Marketing, Nathan McFeters; Blog posts 2008-07-01
Virtual Villains of Security & PCI Compliance: Future Challenges MPLS, VMs and VLANs: Organizations are increasing the use of virtualization of OSI layers two through seven. Virtualization for both the server and network environments should be closely evaluated as it relates to the overall security infrastructure and program of an organization. The areas of Multiprotocol Label Switching MPLS, Virtual Local...; Tags: Security, MPLS, VLAN, SecureState, LANs, Network Technology, Networking; White papers 2008-07-01
A world ruled by Apple: A world ruled by AppleGood post[i]I am perfectly willing to praise Apple or Linux when I feel they are doing something right, and do so on a regular basis in this blog. That’s why I have a hard time understanding the need to believe that Gates did nothing right, in...; Tags: Operating systems, PRODUCTIVITY, Apple Inc., Microsoft Corp., operating system; Discussion threads 2008-06-30
(Fun with openSUSE 11.0): (Fun with openSUSE 11.0)But it's not Blue Like Windows ...Let's see who runs with that.I'm running OpenSuSE 11 on 2 machines and love both the KDE and GNOME desktop implementations. And, as an added surprise, all the server bits are there as well.If you've looked at Ubuntu or other...; Tags: Microsoft Windows Vista (Longhorn), Operating systems, OPEN SOURCE, Novell OpenSuse, openSUSE 11.0, Ubuntu, OpenSUSE 11, Linux, Microsoft Windows Vista, operating system; Discussion threads 2008-06-27
90ò0of all statistics can be made to say anything... 50ò0of the time, aka my thoughts on the Verizon report: 90ò0of all statistics can be made to say anything... 50ò0of the time, aka my thoughts on the Verizon reportHow many breaches from External...sources were facilitated by poor practices of inside sources? Weak passwords, poor surfing habits, poor security implementations, etc. External breaches only occur when an insider allows it to...; Tags: Firewalls, SECURITY, NETWORKING, Network security, Verizon Communications Inc., WAF; Discussion threads 2008-06-23
90% of all statistics can be made to say anything... 50% of the time, aka my thoughts on the Verizon report: ** Update 06/23/2008: I realize I didn't do a very good job of talking about what we're reviewing here.Â This is inÂ responseÂ to the statistics gathered by Verizon related to Forensic Analysis of Data Breaches over a four year span.Â First off, let me...; Tags: Business Partner, Vulnerability, Verizon Communications Inc., Attack, Data Breach, Security, Nathan McFeters; Blog posts 2008-06-22
Firesec (exe): Firesec is a comprehensive solution for firewall rule base analysis in medium to large enterprise environments. Firesec provides multiple functions such as removing redundant rules, grouping similar rules, and searching for vulnerable rule patterns. It also comes along with a PCI DSS compliance module that aids auditing. Firesec supports Cisco,...; Tags: Network Intelligence, Compliance, Firesec, Firewalls, Network Security, Networking; Software downloads 2008-06-19
Gateway FX541XT: Gateway's FX541XT occupies a strange gaming PC middle ground. At $3,500, it's not in the same price category as high-end PCs such as Dell's XPS 730 H2C, but it's also about $2,000 more than the emergent $1,500 gaming desktop we've seen this year, most recently in the Maingear Prelude....; Tags: Desktops, DVD, Consumer electronics, Network technology, Gateway FX541XT, Gateway Inc., PC; Product reviews 2008-06-18
Sentinel (exe): Advanced file integrity checker that integrates seamlessly with your anti-virus/trojan applications. Sentinel audits your system folder (as well as upto 20 other folders) for the slightest file changes and/or additions. If any files fail the integrity check, your anti-virus/trojan program will be notified. Sentinel, has been critically acclaimed worldwide for...; Tags: RuntimeWare, Sentinel, Sarbanes-Oxley, Regulatory Compliance, PCI, Asset Management, Regulations, Government, Financial Accounting, Finance, Human Resources, Policies And Procedures, Storage, Hardware, Operational Planning, Business Operations; Software downloads 2008-06-18