fhs
Volume 10, Number 17 -- May 4, 2010

Bsafe Launches Compliance Software for PCI

Published: May 4, 2010

by Alex Woodie

Achieving and maintaining PCI compliance is one of the most important tasks for IT professionals working for companies in the retail industry. However, when it comes to the System i platform, PCI terms and requirements often don't match up well with i/OS security concepts. Companies can get aid to overcome this PCI hurdle by using a power tool designed specifically for the platform, such as the new PCI Accelerator Package unveiled last month by Bsafe Information Systems.

Bsafe's new PCI Accelerator Package is a set of pre-defined reports and alerts aimed at helping System i users speed up their compliance activities for the Payment Card Industry's (PCI) Data Security Standard (DSS), which is a set of minimum security standards that retailers are required to maintain with their front- and back-office computer and network systems in order to continue to process credit card transactions.

While IBM security experts helped to introduce some i/OS and z/OS concepts to PCI (which was originally written from the point of view of Windows and Unix security administration), PCI compliance remains a big challenge for many i/OS shops--and a big driver of business for companies in the i/OS security business, such as Bsafe and its competitors.

The PCI Accelerator Package is not Bsafe's first security product that addresses PCI compliance. Three years ago the company launched a product called the Policy Compliance Manager, which is a component of its flagship suite of i/OS security tools, called Bsafe/Enterprise Security, to address a range of compliance concerns, including PCI, HIPAA, SOX, Basel-II, and COBIT.

But Bsafe executives soon discovered that customers wanted more PCI-specific functionality from their investments in Policy Compliance Manager and Bsafe/ES, and that's when Bsafe created the PCI Accelerator Package.

"Numerous companies have used Bsafe/Enterprise Security for IBM i to address PCI compliance requirements," states Shimon Bouganim, who once again holds the title of CEO at Bsafe. "When supporting our customers in their implementation effort, we noticed the need for additional out-of-the-box functionality to meet strict compliance deadlines. This is why we decided to develop the Bsafe/PCI Accelerator Package."

The PCI Accelerator Package functions as a sub-component of Policy Compliance Manager to ensure that certain i/OS security settings (in one or more server or partition) are configured properly to achieve and maintain PCI compliance. It does this by applying new PCI templates to the Policy Compliance Manager software, and by generating the necessary reports that demonstrate compliance.

Bsafe also included a series of alerts into the new PCI product. Whenever an action is taken in i/OS that violates the company's PCI security policy (as stated in Policy Compliance Manager), the software can automatically generate an alert and send it to a reporting application via simple network management protocol (SNMP).

What's more, when the software detects an activity or transaction that violates the company's PCI security policy, Bsafe's software can be configured to block the action, such as by revoking a special authority, disabling a user profile, or executing a custom programming. This powerful functionality is achieved through the use of triggers, the company says.

The new PCI templates are the key for achieving and maintaining compliance, says Itay "Ty" Karny, Bsafe's vice president for North America. "Template-based compliance management has emerged as a revolutionary methodology to achieve the complex task of enterprise-wide compliance," Karny states in a press release. "The use of this methodology provides for a consistent and systematic approach for creating and maintaining policies."

The PCI Accelerator Package is available now. Pricing was not disclosed. For more information, visit www.bsafesolutions.com.


RELATED STORIES

Bsafe Launches New i/OS Security Tools

Bsafe Updates Security Tools for i OS

Putting the 'i' Back Into PCI

Bsafe Launches Security Policy Compliance Manager

Bsafe Introduces Cross-Platform Auditing

Bsafe Addresses HIPAA with Field Masking for i5/OS Apps


                     Post this story to del.icio.us
               Post this story to Digg
    Post this story to Slashdot

Sponsored By
BOSaNOVA

Upgrading to a new Power 6 or Power 7
and need support for local/remote Twinax devices?
No Problem!

                                         The BOSaNOVA e-Twinax Controller:
                                         · Is the only Controller recommended by IBM
                                         · Supports All Twinax equipment
                                         · Eliminates SNA, AnyNet and MTPN traffic
                                         · Works on any IBM System i hardware and is V7R1 Ready
                                         · The #1 selling Controller 8 years running

Ask about our limited time e-Twinax Controller
REBATE for new Power System customers.

For more information or for a free trial,
visit us at www.bosanova.net
Editor: Alex Woodie
Contributing Editors: Dan Burger, Joe Hertvik,
Shannon O'Donnell, Timothy Prickett Morgan
Publisher and Advertising Director: Jenny Thomas
Advertising Sales Representative: Kim Reed
Contact the Editors: To contact anyone on the IT Jungle Team
Go to our contacts page and send us a message.

Sponsored Links

Botz & Associates, Inc.:  Set up a FREE one hour security Q&A session with Patrick Botz
BOSaNOVA:  Limited time e-Twinax Controller REBATE for new Power System customers
Computer Keyes:  KeyesOverlay rapidly converts standard *SCS printer files into PDF documents
 

IT Jungle Store Top Book Picks

Easy Steps to Internet Programming for AS/400, iSeries, and System i: List Price, $49.95
The iSeries Express Web Implementer's Guide: List Price, $49.95
The System i RPG & RPG IV Tutorial and Lab Exercises: List Price, $59.95
The System i Pocket RPG & RPG IV Guide: List Price, $69.95
The iSeries Pocket Database Guide: List Price, $59.00
The iSeries Pocket SQL Guide: List Price, $59.00
The iSeries Pocket Query Guide: List Price, $49.00
The iSeries Pocket WebFacing Primer: List Price, $39.00
Migrating to WebSphere Express for iSeries: List Price, $49.00
Getting Started With WebSphere Development Studio Client for iSeries: List Price, $89.00
Getting Started with WebSphere Express for iSeries: List Price, $49.00
Can the AS/400 Survive IBM?: List Price, $49.00
Chip Wars: List Price, $29.95
 
The Four Hundred
Better Than a Sharp Stick in the i

Power7 Blades: The i/DB2 Combo Versus AIX/Oracle

EMC Keeps i/OS Business Moving Forward with New IBM Agreement

As I See It: Life Logging

Global Perspective Requires CIO to Think in Transitional Terms

Four Hundred Guru
Files in Subprocedures

Let One Row Represent a Group

Admin Alert: Diary of a Production System Upgrade, Part 1

Four Hundred Monitor
Four Hundred Monitor's
Full iSeries Events Calendar

System i PTF Guide
May 1, 2010: Volume 12, Number 18

April 24, 2010: Volume 12, Number 17

April 17, 2010: Volume 12, Number 16

April 10, 2010: Volume 12, Number 15

April 3, 2010: Volume 12, Number 14

March 27, 2010: Volume 12, Number 13

TPM at The Register
IBM's Unix poaching slows in Q1

Feeds and speeds on HP's Tukwila blades

Brazil shells out for 244 teraflop Cray super

Red Hat bags NTT as cloud partner

Red Hat goes commercial on Amazon's cloud

Software makers fall in behind Lucid Lynx

IBM gooses dividend, share buybacks

Unisys services sales down in Q1

Reg HPC CommunityHP dons blades to scale Superdome 2

Ubuntu floats 12,000 clouds (and counting)

Platform kicks out HPC Enterprise Edition

HP: last Itanium man standing

THIS ISSUE SPONSORED BY:

Help/Systems
PowerTech
Patrick Townsend Security Solutions
BOSaNOVA
VAULT400


Printer Friendly Version


TABLE OF CONTENTS
PTSS First to Achieve NIST Compliance for DB2/400 Encryption

IBM Unveils i/OS CMS Upgrades and Migration Promotions

m-Power Gets Better Record Filtering, Other Goodies

Bsafe Launches Compliance Software for PCI

Aldon Goes 64-Bit with Service Desk Software

News Briefs and Product Shorts:
New State Privacy Laws Clamp Down on Data . . . Unitrends to Add Deduplication to D2D Backup Appliances . . . Datawatch Updates Data Integration Tool for Monarch BI Suite . . . ACOM Adds New Workflow Features to EZCM . . . Zend Studio Gets New Code Tracing Capabilities . . .

Four Hundred Stuff

BACK ISSUES




 
Subscription Information:
You can unsubscribe, change your email address, or sign up for any of IT Jungle's free e-newsletters through our Web site at http://www.itjungle.com/sub/subscribe.html.

Copyright © 1996-2010 Guild Companies, Inc. All Rights Reserved.
Guild Companies, Inc., 50 Park Terrace East, Suite 8F, New York, NY 10034

Privacy Statement