White Papers

Information Supplement: Application Reviews and Web Application Firewalls Clarified

Overview Payment Card Industry Data Security Standard (PCI DSS)Requirement 6.6 provides two options that are intended to address common threats to cardholder data and ensure that input to running web applications from untrusted environments is inspected "Top to Bottom." The intent of Requirement 6.6 is to ensure web applications exposed to the public Internet are continually protected against the most common types of threats while running and accepting input. There is a great deal of public information available regarding web application vulnerabilities. This paper provides guidance to assist in determining the best option, which can vary depending on products in use, how an organization procures or develops its web applications, and other factors within the environment.

By downloading you agree to our Terms and Conditions. These include information regarding use of your personal data.

Publisher: PCI Security Standards Council
File Format: PDF
Date Published: Jul 13, 2009
Format: White Papers
Topics: Data Recovery - Security, Firewalls, Security Standards

Similiar White Papers

Demystifying the PCI Data Security Standard for Merchants

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security practices set forth by American Express,

Publisher: ComplyGuard Networks | Tags: data, data security, pci, pci dss

ESG Report: Symantec Sets a Course for Security Leadership with Security 2.0

Download this Enterprise Strategy Group (ESG) Security Brief to read about Symantec's recent rollout of its newest enter

Publisher: Symantec

Demystifying the PCI Data Security Standard for Service Providers

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security practices set forth by American Express,

Publisher: ComplyGuard Networks | Tags: data, data security, pci, pci dss

Streamline to Success: The Real Mid-Market Experience: Banking

Community financial institutions, including retail and commercial banks, savings & loans, and credit unions, along with

Publisher: IBM | Tags: information security, pci, sarbanes-oxley

PCI DSS Compliance in the UNIX/Linux Datacenter Environment

This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard (PCI DSS) b

Publisher: BeyondTrust | Tags: applications, linux, pci, pci dss

PCI Security Standards Council White Papers

Payment Card Industry (PCI) Data Security Standard: Security Assessment Procedures

Featured white papers

The Value of Location Intelligence in the Communications Industry

Pitney Bowes

Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities...

Download now »
Best Practices for Translating Customer Satisfaction into Revenue

Citrix Online

Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language...

Download now »
HP print solutions and 3M

Hewlett-Packard (HP)

The objective for 3M was to optimize office printing infrastructure at 3M locations worldwide, reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print solutions...

Download now »