PCIDSS.COM - PCI DSS Security Solutions Directory

Featured PCI DSS Directory Listings

Category: PCI DSS Requirement 6

Develop and Maintain Secure Systems and Software

Security flaws can be exploited by attackers to gain privileged access to systems. Vendor-provided security patches, which must be installed by the entities that manage the systems, are responsible for fixing many of these vulnerabilities. To safeguard against the exploitation and compromise of cardholder data by malicious individuals and their malicious software, all relevant software patches must be installed on all system components.

Software patches that have been sufficiently evaluated and tested to ensure that they do not conflict with existing security configurations are considered appropriate. Using secure coding methods and software lifecycle (SLC) processes for custom or bespoke software, numerous vulnerabilities can be avoided and thus mitigation of potential successful attacks.

PCI DSS assessments are also applicable to code repositories that store application code, system configurations, or other configuration data that may have an effect on the security of cardholder data or the CDE.

There is a special relationship between PCI DSS Requirement 6 and the PCI SSC Software Standards and these should be reviewed in tandem.

PCI Solution Provider

incapsula

Incapsula’s cloud-based Web Application Firewall (WAF) hosted by Rackspace, safeguards your websites and application from any web attack, so you…

Read More

PCI Solution Provider

Cloudflare

CloudFlare?s WAF stops attacks at the network edge, protecting your website from common web threats and specialized attacks before they…

Read More

Location
HeadquartersSan Francisco, California, United States
Rating
0 / 5
Views
2572
PCI Solution Provider

Fortinet

Run vulnerability scans during initial FortiWeb deployment (see How to set up your FortiWeb) and any time you are staging…

Read More

Location
Global PCI DSS Solutions
Rating
0 / 5
Views
2751
PCI Solution Provider

Checkmarx

Checkmarx’s source code analysis makes PCI DSS compliance simpler. You can satisfy the requirement to regularly inspect your code using…

Read More

Location
Global PCI DSS Solutions
Rating
0 / 5
Views
4280