The most recent content from our members.
Also "SaaS" Can Become "PaaS" If You're Not Careful The PCI Security Standard Council finally released its PCI DSS Cloud Computing Guidelines this month, and the Guidelines are not kind to Platform as a Service (PaaS) solutions, or to Software as a Service (SaaS) solutions that behave like PaaS. In the document, the…
Current agent deployments are failing Qualys PCI scans due to the availability of the TLS 1.0 protocol which is not allowed as of the end of June 2018. Disabling TLS 1.0 in the registry of the server has no effect on the scan results. Unless TLS 1.0 is disabled or the option is made to disable it the PCI audit will fail.…
Several SolarWinds products can help with various areas of the Payment Card Industry (PCI) Data Security Standards (DSS) requirements. The purpose of the PCI DSS is to set a baseline of minimum security for any vendor that takes credit cards. This is good for the consumer as it (theoretically) institutes best practices…
Well, as you might have heard, the final version of the PCI DSS 3.0 requirements will be up only by November 2013 and it would be effective from January 2014. Alright, it’s time to get a glimpse of the proposed changes in the newer version. PCI Requirement No. Current PCI DSS Standard Proposed PCI DSS Update for 3.0 on top…
All of us own bank accounts and/or use credit cards, don’t we? So there are mighty chances that you’ve heard the term “PCI compliance” quite often. Do you know what it means? We keep hearing the term every now and then as more data breaches are happening, especially because the payment processors are hacked so often.…
The Payment Card Industry (PCI) requires companies that process credit or debit card transactions to comply with 6 control objectives outlined in their Data Security Standard (DSS). These 6 objectives are: * Build and maintain and secure network * Protect cardholder data * Maintain a vulnerability management program *…
We caught an article this week over on Bank Info Security's website about The Future of PCI. The PCI Security Standards Council revealed some of their thinking about where PCI needs to go during a recent PCI Community Meeting in Orlando, Florida. Some of the highlights, as we see them: * "We really need to have a…
Where can we download the PCI compliance templates for NCM?
Please join us for a webinar on PCI Compliance. SolarWinds and Loop1 will demonstrate how SolarWinds security product, Log & Event Manager, can help you easily become PCI compliant. SolarWinds LEM provides over 300 pre-built “audit-proven” report templates that you can use to generate reports complying with PCI regulations…
I've got an upcoming item about PCI compliance - I need to ensure the downloaded configurations on NCM are actually encrypted to disk. Is there any functionality within NCM to do this? I'm on an old version of SQL, but I also read that SQL2K8 supports some transparent encryption somehow - but is there anything built within…
It looks like you're new here. Sign in or register to get started.