news4geeks.net
9Apr/120

Oracle CSO trashes PCI rules

Posted by vica

In an unusual move, Oracle chief security officer Mary Ann Davidson has called on vendors of payment application software to join her company in opposing specific security vulnerability reporting requirements of the Payment Card Industry Security Standards Council.

In a lengthy, sharply-worded blog post late last month, Davidson lashed out at the PCI Council for allegedly not responding to Oracle's repeated requests that it reconsider its policy of requiring software vendors to share detailed vulnerability data even in circumstances where patches haven't been released.

"Established industry practice concerning vulnerability handling avoids the risks created by the [PCI Council's] vulnerability disclosure requirements," Davidson said. Read more...

Tagged as: , , , Continue reading
   

Tags

Amazon Android Apple apps browser business China Chrome Cloud data devices Facebook Firefox Google Hackers hardware HP IBM Intel Internet iPad iPhone IT LINUX Malware market Microsoft Mozilla network Nokia Oracle OS RIM Samsung Security smartphones software Sony tablets Twitter web website Windows Windows 8 Yahoo

Categories

Calendar

June 2013
M T W T F S S
« May    
 12
3456789
10111213141516
17181920212223
24252627282930