 |
|
View from the Top
|
 |
|
|
The fourth quarter is shaping up to be a busy one at Gemini Security Solutions. We are performing work ranging from security assessments of smart phone devices, to compliance audits of certification authorities, to developing detailed instructions on performing audit logging to meet regulatory requirements. We’re also in the process of expanding our office space, which has grown by 50%. And soon we’ll be making a big announcement about a software solution which you won’t want to miss. Please feel free to contact me if you have any comments or suggestions for our newsletter!
Peter Hesse
Founder, Gemini Security Solutions, Inc.
pmhesse@geminisecurity.com
PS. If this was forwarded to you, you can sign up to receive the Constellation newsletter at http://geminisecurity.com/constellation.
|
| What’s Happening in Information Security |
 |
|
|
|
PCI-DSS Effectiveness
The current version (1.2) of the payment card industry data security standard (PCI-DSS) has been in place for a year now. The standard is supposed to prevent credit card fraud among organizations that process credit card payments. Nick Staples raises some serious questions about its effectiveness.
|
|
Compliance and the Cloud
As use of cloud-computing services increases, the question of whether a cloud-based service can be compliant with various regulations and standards is being asked more frequently. We share some information about the security concerns around cloud-based services including a brief whitepaper.
|
| Tips & Tricks: Keeping Up To Date |
 |
|
|
|
Laura Raderman posted an excellent article about how system administrators can keep up to date on the potential vulnerabilities and corresponding patches for systems that they manage. As she states in the article, keeping patches up to date is one of the simplest ways to reduce your attack surface area.
|
|
 |
|
 |
