IT Security and Compliance White Papers

Read IT Security and Compliance White Papers from industry experts New Net Technologies. Covers topics including PCI DSS, IT Security and IT Optimization.

The PCI DSS security standard calls for a broad range of security measures, but beyond the use of firewalling, intrusion protection systems and anti-virus software, the understanding of the requirements and responsibilities of the merchant are very often poorly understood.

Any organization storing, processing or transmitting Primary Account Numbers (PAN) must comply with the Payment Card Industry Data Security Standard or PCI DSS.

Understanding the background, the objectives and the detailed requirements of the standard is still proving to be a challenge for thousands of organizations around the world. This whitepaper aims to give a basic backgrounder in traditional ‘101’ style.

The breach at Target has not just been big news within the Information Security community; it is worldwide headline news in all mainstream media outlets. This article looks at Brian Krebs’† excellent (as usual) investigation and analysis of the story so far from an NNT perspective.

The new and updated version of the PCI Data Security Standard is as much about refining and improving the protection afforded by the DSS as re-launching the standard and attempting to galvanize renewed focus onto PCI compliance.

Many organizations have still chosen to delay the implementation of their PCI program, being wary of the resource requirements necessary to manage PCI compliance.

Although FIM or File-Integrity Monitoring is only mentioned specifically in two sub-requirements of the PCI DSS (10.5.5 and 11.5), it is actually one of the more important measures in securing business systems from card data theft.