Standards

Your source for the latest standards news and resources.

The notification chain when a breach is suspected
Jul. 02, 2009
A few weeks ago, we provided best practice tips on preserving log data for a forensic investigation. Now that you've got the data set aside for your investigation, who else needs to get involved? Let's discuss the ...

PCI Security Standards Council: Tell us how we're doing
Jun. 24, 2009
The PCI Security Standards Council, which establishes technical standards for the payment-card industry, Tuesday invited broad feedback from both its membership and the public in order to understand the best course to ...

Police to create regional e-crime squads
Jun. 24, 2009
Police forces across the UK are to collaborate to create regional cybercrime squads.

Google to promote Web speed on new developer site
Jun. 23, 2009
Google has created a Web site for developers that is focused exclusively on making Web applications, sites and browsers faster.

Upgrade to Suite B security algorithms
May. 27, 2009
Most companies do not know what level of cryptography is required to properly protect their data lifeblood, nor do they have anyone tasked with assessing the coverage. As a result, most corporations today are not ...

Post-breach, Heartland plans aggressive encryption project
May. 06, 2009
Heartland Payment Systems intends to deploy end-to-end encryption with its merchants to protect its payment processing system from cybercriminals.

OASIS making it easier to use standards without fee worries
Jun. 17, 2009
OASIS is making it easier to implement its standards without users having to toss and turn over whether somebody will demand a fee for using technologies leveraged in the standards.

HTML 5: Could it kill Flash and Silverlight?
Jun. 16, 2009
HTML 5, a groundbreaking upgrade to the prominent Web presentation specification, could become a game-changer in Web application development, one that might even make obsolete such plug-in-based rich Internet ...

GP surgery loses thousands of unencrypted patient records
Jun. 15, 2009
A GP surgery in London has lost the details of 7,000 patients after burglars stole an external hard drive and backup tapes.

Information Commissioner offers businesses privacy advice
Jun. 09, 2009
The Information Commissioner has published a guide advising businesses how to protect customer and employee privacy.

New security standard MashSSL builds application trust
Mar. 30, 2009
Application mashups are gaining traction in the enterprise. There's no doubt that productivity can be enhanced when new functionality can be delivered quickly and conveniently by combining information from multiple ...

Cloud Standards: Trickier than Nailing Jell-O to a Wall
Apr. 29, 2009
Just try creating a definition of cloud computing that's broad enough to encompass all its permutations and narrow enough to provide technical guidance on how to get one cloud talking to another.

China plan hints at technology power ambitions
Apr. 16, 2009
China promised new jobs and more investment in homegrown technologies like its next-generation mobile standard in a growth plan for its hard-hit IT industry late Wednesday.

Companies get checklist for complying with PCI standard
Mar. 10, 2009
The organization responsible for administering the Payment Card Industry Data Security Standard is offering new guidance to companies on how to focus their PCI DSS compliance efforts so as to more quickly them in ...

Microsoft reveals some of its cloud security measures
Jun. 03, 2009
Microsoft has published security policies it applies to its cloud services, and sheds some light on what might ultimately develop as industry standards for securing these services.

Microsoft to test interoperability of identity protocol
Jun. 03, 2009
Microsoft next month for the first time will participate in SAML 2.0 interoperability testing using its Geneva platform to test against other vendors' implementations of the open standard identity protocol.

Microsoft to give its first JavaOne keynote
May. 22, 2009
Here's a first: Microsoft will be giving a keynote address at the JavaOne conference in San Francisco next month.

Angered by Apple delay, hacker posts Mac Java attack
May. 20, 2009
In an effort to draw attention to an long-standing security problem in Apple's Mac OS X operating system, a security researcher has posted attack code that exploits the flaw.

Security group to consider wireless, virtualization standards for payment-card industry - ...
May. 19, 2009
The PCI Security Standards Council may address requirements related to the use of virtualization and wireless technologies by payment-card handlers.

NIST to weigh in on cloud security
May. 18, 2009
The National Institute of Standards and Technology is going to weigh in on cloud computing and has started by working on a definition of what cloud computing is.

Toshiba sues Imation and others over DVD patents
May. 15, 2009
Toshiba filed suit Thursday in a U.S. court against Imation and several manufacturers and distributors of recordable DVD media for the alleged infringement of its patents.

DMTF aims to clear the fog of managing cloud computing
May. 11, 2009
Many organizations are taking an interest in the cloud computing model. However, the fear of vendor lock-in and the lack of interoperability standards are making some companies hesitate. The Distributed Management Task ...

The feeling of greater security tempts us to be more reckless
May. 11, 2009
The recent newsletter - rant, really - about the National Institute of Standards and Technology (NIST) white paper on enterprise password management ('Managing' passwords doesn't make them less unsafe) elicited a number ...

Heartland earns back spot on PCI-approved list
May. 04, 2009
The processing firm Heartland Payment Systems has been reinstated to Visa Inc.'s list of service providers deemed compliant with the Payment Card Industry Data Security Standard (PCI DSS).

Toshiba invokes SD cards to battle Blu-ray
Jan. 08, 2009
A new service to dispense digital content, which involves using self-service kiosks to download movies and music to flash memory cards, was jointly announced by a group of companies including Toshiba on Thursday.