|
Continuous PCI DSS Compliance
Solidcore provides immediate, cost-effective PCI compliance solutions for requirements 10 and 11 (file integrity monitoring and audit trail), including:
File Integrity Monitoring
Database Audit
Network Device Audit
File Integrity Monitoring for PCI DSS
PCI DSS sections 10 and 11 specify the use of a file integrity monitoring solution. Traditional solutions check files periodically by scheduling a scans at regular intervals. Today, leading organizations are deploying continuous file integrity monitoring solutions from Solidcore that constantly monitor critical files and immediately any violations.
Key Advantages of Continuous File Integrity Monitoring
Detects all change across the enterprise: Solidcore’s Continuous File Integrity monitoring captures every change in real-time. Unlike scan-based solutions that can miss critical changes made between scans, Continuous File Integrity Monitoring ensures that even transient violation are detected as soon as they occur.
Identifies both known and unknown changes: Scanning the entire system can be expensive, so scan-based solutions optimize the scan by looking for changes to specific files only. This approach often misses changes that are unknown. For example, if a patch that hadn’t been added to the scanned list introduces a new file or directory, it would be missed by the scan approach. Continuous File integrity Monitoring uses minimal system resources and enables monitoring of the entire IT infrastructure.
Small Footprint and Low overhead solution: Unlike scan-based solutions which can cause I/O and CPU spikes when they scan files and compute MD5 checksums, Solidcore’s S3 Control agent has a very low overhead on the server. Solidcore’s S3 Control product is being used in Point of Sale Machines, Printers, ATMs and large servers like HP Superdomes and IBM System I (AS400).
Database Audit for PCI Compliance
PCI DSS section 10 mandates tracking accesses to all cardholder data. The cardholder data is often stored in a database in an encrypted form and it is critical to monitor and audit the database. In fact, the notorious TJ Maxx breach involved hackers getting unauthorized (and undetected) access to the cardholder data in the database. Solidcore S3 Control has excellent database monitoring capabilities that can alert organizations of suspicious activity and prevent such data breaches.
Key Advantages of S3 Control Database Monitoring
Tracks all activity, not just changes: S3 Control can track database activity like logon/logoff/unsuccessful logon attempts, user/role creation, privilege grants, schema changes, access to sensitive data and changes to the records in a table. Each audit record includes the database username, event type, exact time of the event, result of the action, the remote hostname and the database instance or object that was affected.
Ease of Deployment: S3 Control offers a uniform, easy to use web-based interface to configure auditing options on all your databases and removes the chore of writing and maintaining platform-specific database scripts.
Wide platform coverage: S3 Control can track changes on Oracle, DB2, SQL Server and Sybase running on a variety of OS platforms.
Network Audit for PCI Compliance
PCI DSS sections 1 and 10 outline how to secure and monitor the network. Disabling risky protocols and services, deployment of properly configured firewalls, and monitoring network activity are important not just from a PCI compliance perspective, but also as best practices that can significantly reduce the risk exposure of any organization.
Key Advantages of S3 Control Network Monitoring
Checks the compliance of Network Devices: Organizations can define their desired network configuration benchmarks and audit the network devices for compliance. This greatly reduces manual effort to identify compliance gaps and fast-tracks the process of becoming PCI compliant.
Tracks all configuration changes: S3 Control can track changes to network devices in real-time and version the configurations for future review.
Rollback unauthorized changes: Unauthorized changes to critical configurations like routing-tables, firewall rules and other services can be overcome by configuring S3 Control to instantly rollback to a trusted configuration version, before the changes propagate throughout the network and cause damage. Learn more about our latest PCI Pro Edition product! |
