You are here: silicon.com > Resources > White Papers > Data Management > Data Infrastructure > Knowledge and Data Management

Knowledge and Data Management White Papers

Continuous File Integrity Monitoring: A New Approach for PCI DSS Compliance

Tags:
knowledge and data management

Overview When it comes to IT infrastructure, a strong compliance posture requires two key components trusted state and safe change actions. Payment Card Industry Data Security Standard (PCI DSS) compliance, in particular, highlights the need for safe change actions. File Integrity Monitoring (FIM) is the capability to monitor files and directories on a server for change. The changes can be made to content, permissions or both. Note that only certain changes are relevant in a given situation. For example, PCI DSS compliance specifies that changes to existing data in log files must be detected, whereas the addition of new data can be ignored. For other files, such as critical configuration files, any change may be important.

Further White Paper Details
Publisher	Solidcore Systems	File Format	PDF
Date Published	January 2008
Format	White Papers
Topics	Knowledge and Data Management, Security Standards

Did you find this white paper useful? 5 out of 7 users found this white paper useful

Ovum Report: IBM Simplfies Service Management to facilitate business and IT

Publisher:
IBM

Accelerating Enterprise Data Governance Part 1

Publisher:
DataFlux

Data Governance for Master Data Management and Beyond

Publisher:
DataFlux

Getting Started with Master Data Management

Publisher:
DataFlux

Five Steps to More Valuable Enterprise Data

Publisher:
DataFlux

Ask the Lawyer @ Silicon.com

A: First of all, you need to be aware that while I can tell you what English law has to say about this, your Web site will be accessible in many other jurisdictions, and publishing material on it exposes you to actions under those local laws as well.

Channel:
Comment & Analysis

The Bloor Perspective: ID theft, infrastructure modelling, new breed of consultants

At the lowest level there are facilities for monitoring and reporting events within IT components. This is good for the customer because it can use the best monitor for each technology component. There have been numerous reports recently of...

Channel:
IT Director

Criminal IT: Should you trust the internet?

Thompson proposed that their first compiler could have been modified to include a Trojan which detected whether or not the compiler was in fact compiling a C compiler. If the compiler detected it was compiling the source code for the login program...

Banks told to adopt stronger authentication

On the issue of monitoring, Young added: "Consumers seem to feel comfortable with the notion of their financial institution monitoring their online activity and contacting them when something suspicious is detected, just as they have become...

Fraudsters steal 2,000 credit card details

The theft was detected and the card stopped before it could be used by the fraudster. Issuers can then monitor their cardholders' accounts closely for fraudulent activity and may reissue cards or take other actions if they suspect fraud has occurred.

IT and compliance: A risk management 'odd couple'

For example, the industry-enforced PCI-DSS standard for credit card payment handlers specifies conditions such as the application and configuration of personal firewalls. For example, a marketing person might only need to see a subset of files, and...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Knowledge and Data Management White Papers

Continuous File Integrity Monitoring: A New Approach for PCI DSS Compliance

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific