-
Sep 201030
I was reading about Stuxnet and came across an article about Siemens’ advice to customers against changing the default passwords on their SCADA software.
Continue reading "Siemens’ password advice for Stuxnet victims" »
-
Sep 201022
I get a lot of questions from clients going through PCI or PA DSS assessments about what encryption and key strengths to use. The requirements just say that strong encryption should be used without going into details on algorithms or key strengths. Most people have no clue on what can be used and what cannot.
Continue reading "Data encryption best practices for PCI" »
-
Sep 201020
The next version of both the PCI and PA DSS standards are going to be officially released Oct 28, 2010. The new standards will take effect Jan 11, 2011.
Continue reading "Version 2 of PCI and PA DSS coming Oct 28, 2010" »

