January 11, 2010 - (Free Research) Find out more about the security and reliability of Strict Mode and how to design and modify web applications, keeping in mind the new JavaScript language features.
June 19, 2009 - (Free Research) A new standard file format, Extensible Business Reporting Language (XBRL), for submitting financial reports to the SEC in the United States is being mandated for June 2009. Both the creation of, and reporting from XBRL, are functions performed by the same new tool described in this paper.
March 09, 2010 - (Free Research) The malicious behavior that we have seen in other media already plagues Internet voice calls. This report examines vulnerability trends as well as protocol- and application-layer attacks. Read this white paper to gain both a general and technical overview to the threats against VoIP and learn how to protect and remediate against them.
February 18, 2010 - (Free Research) This white paper examines the business and technical case for centralizing administration in Microsoft’s Active Directory, using Centrify’s DirectControl and DirectAudit. Combined, Active Directory, DirectControl and DirectAudit provide a comprehensive solution to address specific PCI DSS requirements.
February 16, 2010 - (Free Research) In this IT briefing, security expert Ed Moyle answers PCI DSS questions that pose the greatest challenge to enterprises, outlines recent and upcoming clarifications from the PCI Security Standards Council regarding often misinterpreted requirements, and discusses strategies used in the field to help reduce the complexity.
January 29, 2010 - (Free Research) In this presentation, security expert Ed Moyle answers PCI DSS questions that pose the greatest challenge to enterprises, outlines recent and upcoming clarifications from the PCI Security Standards Council regarding often misinterpreted requirements, and discusses strategies used in the field to help reduce the complexity.
August 13, 2009 - (Free Research) To help mitigate the negative impacts of ID theft problems, Massachusetts passed a new law that requires any organization that "owns, licenses, stores, or maintains personal information about a resident of the Commonwealth" to follow a comprehensive set of information security requirements. Read this white paper to learn more.
January 2007 - (Free Research) Enterprise businesses require the control framework involved in the PCI DSS to help improve internal operational, security and audit performance. This white paper details how alignment of business and PCI goals is important to ensure continuity and meet all internal security standards.
December 2009 - (Free Research) In this case study, learn how bwin used Novell Sentinel solution to improve security, reduce administrative effort and make it easier to demonstrate PCI DSS compliance.
January 2010 - (Free Research) Compliance is a fact of business life that challenges organizations of all sizes. Just ticking off boxes on audits is not enough to keep you secure. You must account for compliance in your physical and virtualized environments. Read this paper to learn about an operational security solution that delivers compliance as an ongoing feature.
April 2009 - (Free Research) It sounds simple, but just try to figure out who accessed your confidential data yesterday. IT management standards insist on it, compliance standards require it, but can you deliver?
January 2010 - (Free Research) This report provides the information necessary to determine where antivirus solutions may help an organization to comply with the following regulatory requirements: HIPAA, SOX, GLBA, PCI DSS & FISMA.
March 2010 - (Free Research) This paper explores the use of tokenization as a best practice in improving the security of credit card transactions, while at the same time minimizing the cost and complexity of PCI DSS compliance by reducing audit scope.
March 2010 - (Free Research) Securing cardholder data is not just about passing annual PCI DSS audits. Depending on your key management architecture, you could be spending too much time maintaining compliance or not even meeting the PCI DSS requirements for scope reduction. View this webcast to learn more about where encryption and tokenization fit in a merchant architecture.
May 2009 - (Free Research) The aim of the Code of Connection (CoCo) is to develop the trust required both within and between communities, which then allows more effective use of shared systems and services. This paper addresses some of the key challenges of achieving and maintaining compliance with the GSi Code of Connection (CoCo) for the GCSX.
February 2010 - (Free Research) This paper highlights both positive developments and challenges the industry faces in the year ahead. More technological and advanced thinking in terms of PCI scope is clearly welcome news for merchants, and the hope is that it can begin to help merchants tackle the ever-increasing PCI compliance budget challenges they face.
April 2009 - (Free Research) Enterprise job scheduling is a mature and mission-critical IT capability that supports some of the most important business processes throughout a modern enterprise. This EMA whitepaper will review the implementation and benefits of agentless job scheduling.
February 2010 - (Free Research) Read this expert e-guide to get tips on establishing a process for logging activity and tying records to users, learn three main requirements for testing security controls, and find out how to implement PCI network segmentation and how it may ease PCI compliance for your organization.
February 2010 - (Free Research) The SANS/CWE list of the Top 25 Most Dangerous Programming Errors is already becoming the "standard" for developing secure applications in many large enterprises. In this webcast, review the prevalence of attacks that use vulnerabilities listed in the Top 25 and learn how to safeguard your code to avoid the most dangerous programming errors.
January 2010 - (Free Research) Looming PCI DSS deadlines and changes to requirements are affecting the way you do business. In this podcast, get armed with the knowledge you need to prepare your large or small organization for PCI DSS compliance. Review strategies that will keep you ahead of deadlines and help you avoid costly penalties for non-compliance.
October 2009 - (Free Research) Using OS lock down scripts can be time consuming and error prone. Keeping those scripts up-to-date as new guidelines are published requires a continuous cycle of research, interpretation, and script revision. Do you really have time for this? Security Blanket automates the process of locking down Linux and Solaris operating systems.
January 2010 - (Free Research) This webcast talks about NERC compliance and securing the power grid. The webcast provides an overview of the NERC Cyber Security Standards, addresses challenges and common pitfalls in implementing NERC compliance, gives hints and tips for developing an assessment strategy, and more.