You are here: silicon.com > Resources > White Papers > Security > Security Administration > Security Standards

Security Standards White Papers

Achieving Compliance in a Virtualized Environment

Tags:
security standards

Overview High profile information security failures resulting in the loss of cardholder data, confidential information, and Personally Identifiable Information (PII) have substantially increased regulatory pressure. Many organizations must now comply with standards such as PCI, regulations like SOX-404 or HIPAA, and state privacy laws. Traditional IT auditors and security assessors have been focused on the physical components of the IT infrastructure. However, virtualization technologies are increasingly being used in business processes that have IT compliance requirements. The goal of this paper is to present the unique considerations that virtualization presents to regulatory and standards compliance.

Further White Paper Details
Publisher	Vmware	File Format	PDF
Date Published	September 2008
Format	White Papers
Topics	Security Standards, Virtualization

Did you find this white paper useful? 4 out of 5 users found this white paper useful

Achieving compliance with GSi Code Of Connection (CoCo)

In November 2005, The Government published 'Transformational Government - Enabled by Technology' which documents the steps necessary to achieve effective delivery of technology for Government. To develop the necessary trust...

Publisher:
Lumension

Messagelabs - IT Security Threats of Today and Tommorrow Webcast Supporting Doc

This document supports th silicon.com webcast which discusses some of the security threats to IT systems that organisations have to face on a daily basis - and what do about...

Publisher:
MessageLabs, now part of Symantec

MessageLabs - The Dark Art of Spam

Quite simply, MessageLabs anti-spam solution provides businesses with the quality of protection they urgently need if they are to stay a step ahead of the spammers - and the increasingly...

Publisher:
MessageLabs, now part of Symantec

Maximising site vistors trust using extended validation SSL

Web business faces a crisis in confidence. Trust in site security is decling, resulting in consumers scaling back on web transactions or just opting out altogether. This white paper address...

Publisher:
VeriSign

What every E-buisness should know about SSL security and customer trust

Fear of fraud is well founded, Gartner reports nearly 2 million Americans were victims of fraud over the internet during a recent 12 month period. Gaining the trust of online...

Publisher:
VeriSign

Government on 'snooping' code collision course

But the Internet Service Providers Association (ISPA) has such grave concerns about the cost of compliance and data protection laws that it is advising all its members to not comply with the code. A government code to force internet service...

'Jail or compliance? You decide', directors told

But while much has been written about SOX, one speaker at the Computer and Internet Crime Conference in London urged delegates not to take their eyes off less fashionable regulated areas as well, such as privacy.

How to insure your IT

Data breach disclosure laws in the US (and possibly soon in Europe) help with this to a certain extent but it's still far from an exact science. Mark Greisiger, CEO of NetDiligence, which conducts IT risk assessment services on behalf of insurance...

What price compliance?

Organisations taking just a tactical or piecemeal approach by considering each regulation with which they must comply in isolation will fail to see the bigger picture and are likely to end up spending more in the long run.

Cloud computing for finance firms - is it compliant?

This is not to say regulations will undermine cloud computing but rather firms will need to pay particular attention to the need for controls that will help to prevent system and process failures, or to implement measures that will enable prompt...

How to recover from a data breach

Unfortunately there's no standard playbook for incident management, even the PCI-DSS specification, normally quite prescriptive, carries only general information about an incident response plan (which is listed under requirement 12.9 in the latest...

Channel:
Protecting Enterprise Data

Featured White Papers

Harnessing the Power of Location Intelligence in the Public Sector

Throughout the world, public services today are under pressure. The current economic climate, where taxreceipts are naturally suppressed, provides very seriousfunding challenges. Moreover, in good times and bad, increasing regulation at the regional and national level is imposing additional duties and responsibilities on the public services without additional resources to carry them out. Store closures are changing the urban landscape. Demographic and/or economic change isincreasing demand for health and social services.Demand for decreased crime rates is focusing minds in law enforcement. And the threat of internationalterrorism is forcing greater contingency duties on the emergency services. The net result is a need to do more with lessquite a challenge.

Publisher:
Pitney Bowes

Buyers' Guide - How to ease the shift to mobile working

With momentum building behind mobile working, are higher costs inevitable when moving staff to laptops? Not necessarily. In fact it's possible to emerge with lower management overheads - and tighter security. Read on to find out more.

Publisher:
Intel

IBM Virtualization Services

Virtualization is a powerful technology and can have profound effects on the datacenter; however, it should be viewed as a component of an overall IT strategy that will be able to support the enterprise's needs. IDC recommends that enterprises look at theentire architecture and determine how to best deploy virtualization