EMC Corp.'s RSA Security has collaborated with several security software vendors on a set of products to help companies comply with the Payment Card Industry security standard.
RSA introduced the Payment Card Industry Data Security Standard Solution on Monday. The product suite features technology developed by EMC, nCircle Network Security Inc. of San Francisco, and Qualys Inc. of Redwood Shores, Calif.
Both nCircle and Qualys provide vulnerability scanning, which the standard requires. Other elements of the product suite address network vulnerabilities and offer preventative measures to keep data from becoming exposed. For example, companies can use RSA's one-time password-generating tokens to control access to sensitive information. They also can use EMC's data erasure services to delete data that should not be stored.
The standard, developed by the major card companies, sets restrictions on how card data can be used and stored to prevent hackers from stealing it.
RSA also has opened a PCI Resource Center, an online portal that provides educational resources to companies that want information about compliance with the standard. The portal has four white papers about the standard; monthly podcasts and a five-part Webcast are expected soon.
"Companies handling consumer credit card data now face unprecedented levels of accountability for securing that information," Jim Melvin, RSA's vice president of marketing, said in a press release. "Companies must understand where card data resides throughout an often-distributed enterprise and ensure that this data, and access to this information, is secure."
