You are here: silicon.com > Resources > White Papers > Security > Security Administration > Security Standards

Security Standards White Papers

Achieving PCI Compliance For: Privileged Password Management & Remote Vendor Access

Tags:
security standards

Overview Though PCI compliance is not a government driven requirement such as Sarbanes Oxley and HIPAA, noncompliance under PCI can have a devastating impact on any enterprise that relies on credit card transactions. The contract with credit card companies requires that as an organization one complies with PCI. Non-compliance with PCI can result in specific contractual penalties and/or revocation of the rights as an enterprise to process credit card transactions. Like all compliance and regulatory requirements, there is no single product or policy/procedure that will assure the compliance. THERE IS NO SILVER BULLET for PCI COMPLIANCE. PCI compliance requires that the enterprise deploy many security technologies, and have specific policies and procedures in place.

Further White Paper Details
Publisher	e-DMZ Security	File Format	PDF
Date Published	April 2007
Format	White Papers
Topics	Security Standards, Security Management

Did you find this white paper useful? 1 out of 2 users found this white paper useful

Microsoft FDCC Webcast Series: Do It Right: Log in as Normal User

FDCC requires that the typical user run as Normal User whenever possible; without this, a managed environment is practically impossible. For organizations that have given Local Administrator rights to their...

Publisher:
Microsoft

Tags:
security standards

Gartner Report: Magic Quadrant for Secure Web Gateway, 2007

Interested in what analyst firm Gartner has to say about Blue Coat Secure Web Gateway solutions? Read its "Magic Quadrant for Secure Web Gateway, 2007" report to find out....

Publisher:
Blue Coat Systems

Diffie-Hellman Key Exchange -- A Non-Mathematician's Explanation

The Diffie-Hellman algorithm is one of the most common protocols used in networking today. An understanding of its underlying protocols and processes helps a great deal when trouble-shooting a system....

Publisher:
Global Knowledge

Segregation of Duties in the Real World: Risk-Based SoD Management With Continuous Monitoring Lowers Compliance Costs

Segregation of duties in the real world demands top-down management that eliminates financial risk without adding overhead costs or extinguishing ERP-fueled efficiency gains of the last decade. Fortunately, auditors and...

Publisher:
Oversight Systems

Tags:
security standards

Encryption Essential to Meet Information Security and Compliance Initiatives

California's unique notice of security breach act (frequently called "S.B. 1386") and the Gramm-Leach-Bliley Act of 1999 (also known as "The Financial Services Modernization Act") are two major laws that...

Publisher:
PC Guardian Technologies

Ecommerce sites face security crackdown

Essentially the new PCI Data Security Standards formalise a set of good working practices that professional online retailers should already be following. Non-compliance will mean e-tailers will be unable to process transactions with the credit card...

Channel:
WebWatch

The Bloor Perspective: Easy mobile minutes, corporate compliance and Google's IPO

And Sarbanes-Oxley is not the only law with which companies must comply. At first, this affected just public companies listed in the US, but the EU is now looking at passing its own version of Sarbanes-Oxley, which may be even more far-reaching...

Channel:
IT Director

BOC faces £20m Sarbanes-Oxley compliance bill

Industrial gases group BOC said it faces higher than expected costs, totalling around £20m, over the next two years in order to bring the company into full compliance with the Sarbanes-Oxley (SOX) corporate governance regulations.

Channel:
CxO Extra
Tags:
boc,
sox,
compliance

ID tech tightens up compliance

More than 60 banks around the world reported fraudulent transactions based on the stolen credit card data. These systems tie access to resources to the rights associated with a particular user or role.

The Naked CIO: Identity crisis

With Sarbanes-Oxley, data protection and new US PCI standards, businesses have an obligation to comply with standards for securing this information. Today is a typical day and I estimate I have parted with personal information about 10 times in...

Compliance backlash: 'Get mad or get even'

Section 404 of the Sarbanes-Oxley Act (SOX), which came into effect on 15 November 2004, stipulates that companies trading publicly in the US must have policies and controls in place to secure, document and process information dealing with their...

Featured White Papers

Best in Class Organisations Use Packeteers WAN Optimisation Solutions

Independent research from the Aberdeen Group shows that the most successful enterprises are reaping the benefits of the Packeteer solution and are using it for competitive advantage.

Publisher:
Packeteer

Protecting key assets (security)

Key infrastructure elements must be secured against outages, damage and sabotage. Siemens offers comprehensive solutions from healthcare and power generation to water supply, transportation, and industrial production, to telecommunications.

Publisher:
Siemens

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.