IBM Global Technology Services PCI DSS ITS IAS. IAS. 2I/T
1PCIDSS 2 2
PCI DSS QSA PCIDSS Fi Gap IBM PCIDSS IBM PCIDSS QSA QSA PCIDSS ROC* 1/ * ROC: Report on Compliance 3
PCI DSS 4
PCIDSS PCIDSS 1. PCIDSS PCIDSS PCIDSS PCIDSS PCIDSS 5
PCIDSS 2. PCIDSS PCIDSS 6
3. PCIDSS 4. 7
Contents 1PCIDSS 2 8
PCIDSS12 9
IBM IBM 10 IBM Rational AppScan IBM Security Network IPS, MFS IBM IBM Tivoli Security Information and Event Manager Guardium IBM Proventia Server IPS IBM SiteProtector IBM MSS ( MPS, MIDS/IPS) IBM Smart Surveillance Solution PCIDSSIBM IBM PCIDSS 12 11 10 9 8 ID IBM Tivoli Identity Manager IBM Tivoli Federated Identity Manager 7 Guardium IBM Tivoli Access Manager for Operating Systems IBM Tivoli Access Manager for e-business IBM Tivoli zsecure Admin 12 IBM ISS IBM PCIDSS IBM IBM Global Services 6 IBM Rational AppScan IBM Tivoli CCMDB IBM Systems and Storage IBM Security Network IPS, MFS IBM RaioonalSoftware Development Platform 1 IBM IBM Proventia Network Multi-Function Security (MFS) IBM Proventia Server IPS 2 IBM Tivoli Identity Manager Guardium Tivoli Security Information and Event Manager 3 IBM Tivoli Storage Manager IBM Proventia Server IPS IBM System z Encryption Solutions IBM IMS and DB2 Encryption Tool IBM 4 IBM Data Encryption of IMS and DB2 IBM System z network encryption IBM WebSphere DataPower XML Security Gateway Proventia Network Mail Security System 5 IBM Proventia Desktop Endpoint Security IBM Managed Security Service (MSS) BM
Tivoli 11
Tivoli IBM Security Netwrok IPS (: IBM Proventia Network IPS) 6 11 6: 11: 11.4 12
Tivoli 61 13
Tivoli IBM Security Network IPS IBM Security Network IPS IBM Virtual Patch IBM X-Force Windows Linux Unix middleware Windows 2000 92%*1 IBM Security Network IPS! *1) 2006-2009Windows 2000(PC ) 14
Tivoli IBM X-Force IBM Security Network IPS Microsoft IPS ZERO-Day 15 ISS X-Force
Tivoli 90% IBM X-Force38 200918 X-Force IBM X-Force displays Ahead of the Threat protection for the Top 38 vulnerabilities from Jan Aug 2009. 16
Tivoli IBM X-Force 17
Tivoli Tivoli Security Information and Event Manager (TSIEM) PCI DSS (PCI ) 10: 18
Tivoli OS 19
Tivoli OS IT Active Directory 20
Tivoli Tivoli Security Information and Event Manager (TSIEM) (OS) TSIEM where to where from on what who what W7 () when where! 1. W7who, what, on what, when, where, where to, where from 2. NW 3. /ISO27001 SOXPCI DSS 21
22
PCI-DSS v1.2 (8.5) PCI-DSS v1.2 (8.5) PCI-DSS v1.2 (8.5) PCI-DSS v1.2 (10.2.1) 23
Tivoli PCI DSS ( ) ( ) 24
Rational 25
Rational IBM Rational AppScan Standard Edition 6 11 Web Web Web HTTP Web AppScan HTTP 26
Rational IBM Rational AppScan Standard Edition URL 27
Rational IBM Rational AppScan Standard Edition AppScan () PCI DSS 28 PCI-DSS PCI-DSS
Rational. 10-20% 29
Rational IBM Rational AppScan Source Edition () () / (Java,.NET, C/C++, Perl, PHP ) 30
Rational IBM Rational AppScan Standard Edition Source Edition IBM IBM AppScan Source Edition Edition 31
DB&Guardium 32
DB&Guardium DB & / Guardium 33
DB&Guardium PCIDSSGuardium 1Firewall 2 3 4 5 6 7 8ID 9 Guardium 211 7 IP SQL AD/LDAP 10 11 12 10 34
DB&Guardium PCIDSS 2 11: (DISA STIG & CIS ), SQL OS 35 CIS,STIG
DB&Guardium PCIDSS 10: SQL DB Guardium () 36 36
DB&Guardium PCIDSS 7: SQL sqlplussql 37 Guardium
For more information, please visit: http://www.ibm.com/iss/jp 38