Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

PCI compliance reporting for AMP wireless management suite

Aruba Networks : 13 January, 2009  (New Product)
Wireless management tool gains PCI compliance reporting detecting rogue wireless access points and intrusion detection
Aruba Networks has announced the release of AMP Wireless Management Suite 6.2. The new management suite includes Payment Card Industry (PCI) Data Security Standard (DSS) compliance reporting. The PCI standard defines security guidelines for merchants and service providers that store, process and transmit cardholder data. The newly introduced in-depth compliance reporting feature evaluates individual managed devices against several PCI requirements to validate that safeguards are working as intended. The report also summarises any intrusions detected by the wireless intrusion protection system, as well as any detected rogue wireless access points.

"Enforcing strong access controls and audit trails around sensitive data and systems can provide a compliance-compensating control," said Avivah Litan, VP Distinguished Analyst at Gartner. "The 'deny all except what is absolutely required' dogma should be adhered to. Security audits should be conducted continuously or as frequently as possible, and not be limited just to what's required by PCI."

Besides PCI compliance reporting, the AMP Suite 6.2 includes several additional new security and monitoring features including among others:

• Enhanced rogue access point detection and workflow, including additional levels of rogue classification;
• RADIUS authentication for administrators to address the PCI requirement that all systems adhere to centralised AAA, use strong passwords, rotate passwords regularly, and maintain an external audit trail;
• SSID-based statistics collection and report filtering for tracking the migration of devices away from WEP to PCI-compliant security methods;
• Monitoring support for Cisco 871 Routers.

In addition to the AMP management products, Aruba offers integrated security and wireless/wired access solutions that meet or exceed the wireless LAN-specific security requirements in the latest PCI DSS v1.2. Merchants using an Aruba networking solution can cost-effectively implement the security controls required for PCI compliance without compromising the performance of business applications or upgrading legacy networks.

"Firewalls, encryption, authentication and wireless intrusion detection are mandated for use with all wireless LANs in the latest PCI standard, and the new report makes quick work of assessing important elements of compliance with the standard," said Bryan Wargo, general manager of Aruba's AMP division. "The newest PCI standard defines testing methodologies intended to ensure that the twelve major steps for securing payment account information have been satisfied. Undertaking these tests manually is time consuming, inefficient, and prone to human error. AMP Suite 6.2 automates much of this work, encouraging users to run reports on a frequent basis so that issues can be identified and corrected faster. Given the monetary penalties out-of-compliance violations, AMP Suite 6.2 will offer welcome relief to merchants."

A new white paper, Security Is In The Air, that describes how merchants can comply with the newest PCI DSS Version 1.2 standard, can be downloaded from Aruba's Web site.
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo