BOUNCER by CoreTrace:  PCI DSS Compliance

• BOUNCER by CoreTrace
  • Product Overview
• Benefits of BOUNCER
  • Overview of Benefits
  • Malware Threats
  • User-Privilege Threats
  • Configuration Lockdown
• Features of BOUNCER
  • Overview of Features
  • Trusted Change
• Regulatory Compliance
  • Overview of Compliance
  • HIPAA
  • The Sarbanes-Oxley Act
  • PCI DSS
  • NERC
  • NIST sp800-53
• Industry Solutions
  • Overview of Solutions
  • Engineering and Utilities (SCADA)
  • Hosted VoIP Providers
  • Government
• Roles & Responsibilities
  • Overview of Use by Role
  • IT Administrators
  • IT Managers
  • Executives

• See Also:
  • Application Whitelisting News
  • Live & Recorded Events
  • BOUNCER Presentation
  • Resource Center
• Related Resources:
  • BOUNCER Online Demo
  • Application Whitelisting: New Paradigm
  • Tenets of Endpoint Control (Ogren Group)
  • Combatting Buffer Overflows & Rootkits
  • BOUNCER ROI Analysis

Payment card information secured with BOUNCER by CoreTrace

Due to their very nature, Payment Card Industry (PCI) systems are constantly under attack by cyber-criminals. Invasion into a PCI network can have devastating consequences for everyone along the chain, from consumers to CEOs. The PCI, therefore, has collaborated to produce a series of process and security tool requirements known as the Data Security Standard, or DSS.

To reflect the ever-growing and adaptive nature of cyber-crime, the DSS takes a multi-faceted approach that includes securing the systems where the payment card data resides, controlling access to the systems and the cardholder data, and protecting the data itself.

Rather than implementing a variety of applications to address specific points along the path, you can trust BOUNCER to meet many of these requirements in one elegant package.

BOUNCER addresses several DSS provisions:

• "Develop and maintain secure systems and applications."

  This provision addresses the need to keep all systems completely patched and updated at all times. Obviously, this can be an onerous proposition, since there is always a ‘patch gap’, along with the myriad bugs or configuration errors that always creep into programming. BOUNCER application whitelisting removes the need to constantly patch and update without sacrificing security. If malicious code appears, even on zero-day, it will simply not run if it's not on the approved list.

  Also, if configuration changes are attempted on a BOUNCER secured system, BOUNCER acts to prevent the unauthorized change, logging and centrally reporting any such incidents. BOUNCER also prevents the long-term harmful effects of DLL injections, stack vulnerabilities or buffer overflows through real-time memory protection.

• "Use and regularly update antivirus or other programs."

  BOUNCER is an entirely new anti-virus solution. It stops viruses and malware with application whitelisting, so that when unauthorized code enters your systems, it will fail to run — every time. You get complete control, while being freed from the continuous cycle of antivirus software updating. Applications interacting, using or storing PAN or other sensitive data are protected entirely from alteration except through an authenticated, audited change mechanism.

  In addition, BOUNCER's tiny operational footprint does not effect the performance of transaction-oriented systems.

• "Regularly monitor and test networks."

  DSS requires constant vigilance through assessment and penetration testing, as well as the use of anti-virus software and intrusion detection systems. BOUNCER continuously monitors network and user access to applications on each protected system. Events are generated, logged and reported upon whenever a policy violation attempt occurs.

  BOUNCER provides intrusion detection through monitoring specific ports, IP address pairs, and real-time, in-memory activity tracking, all in an application with an extremely small CPU footprint that does not return false positives or false negatives.

  Most thefts of PAN data occur in the database, with hackers gaining access to the network, then making their way via obfuscation and extraction tools until they reach their ultimate goal. BOUNCER makes sure that not one bit of their code will run on your systems. You can effectively use BOUNCER to replace three separate security solutions: anti-malware, configuration control, and host intrusion detection.

• Contact
• Site Map
• Legal
• Privacy Policy