You are here: silicon.com > Resources > White Papers > Security > Security Administration > Security Standards

Security Standards White Papers

Guide to PCI Compliance for Web Applications: Updated for Version 1.2 of the Payment Card Industry Data Security Standard

Tags:
security standards

Overview On the surface, the Payment Card Industry (PCI) Data Security Standard (DSS) reads as a series of do this, don't do that" absolutes. Vet, in three areas, the standard gives organizations some flexibility in their options. The most critical of these choices lies in Requirement 8.6. This section states that all web applications must be protected by an application-layer firewall (also known as a web application firewall) or undergo a code review by an organization that specializes in application security. With all the noise in the market, how does one decide which solution is right for organization? This white paper will help one make that decision.

Further White Paper Details
Publisher	Breach Security	File Format	PDF
Date Published	October 2008
Format	White Papers
Topics	Security Standards, Security Management

Did you find this white paper useful?

Achieving compliance with GSi Code Of Connection (CoCo)

In November 2005, The Government published 'Transformational Government - Enabled by Technology' which documents the steps necessary to achieve effective delivery of technology for Government. To develop the necessary trust...

Publisher:
Lumension

MessageLabs - The Dark Art of Spam

Quite simply, MessageLabs anti-spam solution provides businesses with the quality of protection they urgently need if they are to stay a step ahead of the spammers - and the increasingly...

Publisher:
MessageLabs, now part of Symantec

Maximising site vistors trust using extended validation SSL

Web business faces a crisis in confidence. Trust in site security is decling, resulting in consumers scaling back on web transactions or just opting out altogether. This white paper address...

Publisher:
VeriSign

Compliance with Data Handling Procedures in UK Government

The UK Data Handling Procedures in Government Report set out clear and mandatory procedures to be followed by all government employees that have access to and responsibility for citizen data....

Publisher:
Lumension Security

"We Have Met the Enemy, and He is Us."

Organisations are being force towards indentity- based acess lifecycle management tools in order to support IT agility & flexability, safeley empowering staff and rapid evolution of data cetres and core...

Publisher:
IBM

US Secret Service rounds up ID thieves

Dubbing the enforcement action Operation Firewall, the Secret Service said individuals working together stole more than 1.7 million credit card numbers and other financial information costing more than $4.3m.

Channel:
Protecting your ID

Tech firms lead tsunami aid donations

We in the United States understand firsthand what it means to receive support from across the globe in times of crisis. The company, which provides applications for nonprofit organizations, said that its own clients have raised $50m online in the...

Channel:
IT Pro

US bids to hold on to net

We do not believe in adding an inter-governmental layer of bureaucracy over such a dynamic medium as the internet. Less than two weeks before a United Nations summit on the internet begins, technology firms including Google, IBM and Microsoft are...

Channel:
WebWatch

RFID-chipped passports cross the pond

Security researchers have not, however, figured out how to alter the personal information, which is protected with a digital signature designed to enable unauthorised changes to be detected. State Department officials claim that a layer of metallic...

Don't forget to secure your BlackBerry, companies told

He told silicon.com: "We actually have customers who look at information security in an even stricter sense - say no component should exist without a firewall and actually distribute BlackBerrys amongst multiple servers with multiple firewalls.

Is your credit card data well enough protected?

The self-regulatory system credit card companies have created to protect consumer data sacrifices some consumer protections for the sake of the convenience of credit card companies and their financial institution partners, retail representatives...

Channel:
Retail & Leisure
Tags:
data

Featured White Papers

Harnessing the Power of Location Intelligence in the Public Sector

Throughout the world, public services today are under pressure. The current economic climate, where taxreceipts are naturally suppressed, provides very seriousfunding challenges. Moreover, in good times and bad, increasing regulation at the regional and national level is imposing additional duties and responsibilities on the public services without additional resources to carry them out. Store closures are changing the urban landscape. Demographic and/or economic change isincreasing demand for health and social services.Demand for decreased crime rates is focusing minds in law enforcement. And the threat of internationalterrorism is forcing greater contingency duties on the emergency services. The net result is a need to do more with lessquite a challenge.

Publisher:
Pitney Bowes

IBM XIV® Storage System: Power Consumption Reinvented

Reducing power consumption is one of the most significant challenges of IT centers today. With storage needs on a steep rise, it is increasingly clear that new approaches must be explored. This IBM whitepaper shows how, on average, a traditional storage system using mirroring effectively uses less than 21% of its raw capacity, and an XIV system uses approximately 46% of its raw capacity.

Publisher:
IBM

3 Strategies for Reducing IT Support Costs

As companies brace for more bumps in the economic downturn, many organisations are indiscriminately cutting costs. To ensure a seamless transition into the post-recession market, however, slashing and burning is not recommended. Now is the time to strategically trim and strengthen for success. This IDC White Paper explores 3 tangible areas that IT departments should investigate to help strategise cost reduction during the downturn. Download the White Paper to learn: -- Why IT utilisation, end-user support and maintenance budgets are the most strategic areas to investigate -- How to effectively approach cost-saving measures within these areas while maintaining IT performance -- Tools and services the IDC recommends for achieving maximum cost savings and efficiency