Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: PCI/DSS compliant Managed IDS

from [ebk_lists] Network Security [Permanent Link]
Subject: Re: PCI/DSS compliant Managed IDS
Date: 23 Aug 2007 17:07:28 -0000 
I'd vote yes:

"Appendix says:
As referenced in Requirement 12.8, all service providers with access to 
cardholder data (including hosting
providers) must adhere to the PCI DSS.

12.8:
12.8 If cardholder data is shared with service providers, then contractually 
the following is required:
12.8.1 Service providers must adhere to the PCI DSS requirements
12.8.2 Agreement that includes an acknowledgement that the service provider is 
responsible for
the security of cardholder data the provider possesses."

If the monitoring of the IDS provide access to cardholder or transaction data, 
they must also be compliant.

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to 
http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw
 
to learn more.
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  IDS Policy Manager v2.1 Released, Jeff Dell
Next by Date:  RE: PCI/DSS compliant Managed IDS, Craig Wright
Previous by Thread:  RE: PCI/DSS compliant Managed IDS, MH Michael Hammer (5304)
Next by Thread:  RE: PCI/DSS compliant Managed IDS, Craig Wright
Indexes:  [Date] [Thread] [Top] [All Lists]