tags:

views:

89

answers:

2
Q: 

PCI compliant in the cloud

The requirements for PCI standards include installing a firewall, restrict physical access to servers, using and regularly updating antivirus and malware software etc as outlined here

If you host your application in the cloud , how can you ensure that you meet these PCI requirements

A: 

The easiest way is to use a 3rd party payment company. They can handle all the transactions for you in a secure manner, without you ever having to know any details.

Kristian Hebert  2010-03-22 08:11:12
check this out http://www.mckeay.net/2008/11/02/pci-compliance-in-the-cloud-get-it-in-writing/ ....and this http://broadcast.oreilly.com/2009/02/pci-in-the-cloud.html and this http://cloudsecurity.org/blog/2009/03/14/what-does-pci-compliance-in-the-cloud-really-mean.html more what i was looking for
Allan Rwakatungu  2010-04-05 10:55:08
+1  A: 

The best way to ensure you are PCI complaint is to look for cloud infrastructure providers that provision "private cloud" infrastructures. Check and see if the cloud resource pools are logically divided, physically divided and what isolation levels exist.

There are several good private cloud providers out there, but each have different ways of providing isolated instances. Quite often you will see enterprise clouds as VMware vSphere 4 installations.

DeckerEgo  2010-04-12 03:54:56

related questions

Hosting, deploying and running web applications in the cloud
What is a good pricing model for Windows Azure?
Can I set the expires header on all objects in an Amazon S3 bucket all at once?
Book recommendation for running ASP.NET/SQL Server on AWS
What is a "Cloud OS"?
What is the easiest way to parallelize my C# program across multiple PCs
Can someone explain the concept of an "instance-hour" as used by cloud computing providers?
How does SQL Server Licensing work on Amazon's EC2?
Windows Azure for web developers vs Amazon EC2
How best to resize images off-server
How to set up a computing cloud and how it works?
Fluffy Cloud Configurations For .NET
Deploying to Amazon EC2
Any good distributed agent/service models for .NET?
Experiences and tips for programming with and for Amazon's cloud servers/apps/tools?
Amazon - EC2 cost?
What alternatives are there to Google App Engine?
What is Cloud computing?
Query points epsilon-close to a cut plane in point cloud using the GPU.
Are off-the-cloud desktop applications dead?
How does dedicated webhosting compare to Amazon's Cloud?
Do you use Amazons Cloud services for your company?
Amazon Web Services
I'm looking for a Windows hosting provider that supports custom os images (like AMZN EC2)
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)