SOURCE: Art of Defence

art of defence

April 21, 2010 08:30 ET

art of defence Outlines PCI-DSS Compliance Impact of New OWASP Top 10

SAN FRANCISCO, CA--(Marketwire - April 21, 2010) -  

What:   PCI-DSS requirement 6.5 is impacted by the updated OWASP's Top 10 Web application risk ranking -- new risks "security misconfiguration" and "un-validated redirects and forwards" are added to the list. The new listing is prioritized by risk to a company if a breach is exploited, rather than how common a vulnerability is.
     
Why:   As stated in the PCI-DSS standard, "The vulnerabilities listed at 6.5.1 through 6.5.10 were current in the OWASP guide when this version of PCI DSS [1.2] was published [July, 2009]. However, if and when the OWASP guide is updated, the current version must be used for these requirements."
     
Who:   All PCI-DSS-compliant retailers, credit card processors and technology vendors are impacted as well as those companies who wish to become compliant. Both self assessment audits and third-party audits are affected.
     
When:   Georg Hess, CEO, art of defence, is available immediately to discuss how the new risks impact PCI-DSS and how a company can meet compliance.
     
Where:   Details of how art of defence customers who use distributed Web application firewall solution, hyperguard, can meet PCI-DSS compliance for "un-validated redirects and forwards" can be found on the company's blog
     
Resources:   Blog: http://artofdefence.wordpress.com
    Top 10: http://www.owasp.org/index.php/Top_10
    PCI-DSS: https://www.pcisecuritystandards.org/security_standards/pci_dss.shtml

About art of defence
Founded in 2005, art of defence established its San Francisco-based North American headquarters in 2009. Focused exclusively on providing comprehensive web application security technology on any scale, art of defence's distributed web application firewall (dWAF) technology, hyperguard™, is the industry's first WAF SaaS offering. Available in many forms, hyperguard is the most flexible solution on the market today. Customers have access to the solution as a software plug-in, virtual appliance, hardware appliance or as a standalone software solution.

The company serves the financial services, eCommerce, technology, telecommunication and public sector markets exclusively through OEM/technology and reseller channel partners. art of defence partners with leading technology providers like Amazon Web Services, Armorize, GeNUA, GoGrid, Microsoft and Zeus. Regensburg, Germany, remains the global headquarters for the European and Asian markets in addition to North America.

For more information about art of defence, visit: www.artofdefence.com/en

Contact Information

Webosphere

Keyword Cloud

View Website