HPE Community
Operating System - OpenVMS
1753447 Members
5081 Online
108794 Solutions
New Discussion юеВ

Re: OpenVMS & PCI DSS SEM or SIEM

 
SOLVED
Go to solution
Hejib
Frequent Advisor

тАО05-13-2008 12:44 AM

тАО05-13-2008 12:44 AM

OpenVMS & PCI DSS SEM or SIEM

Hi, we're being asked to comply to Payment Card Industry Data Security Standard with some of our OpenVMS systems. (Other groups are using RSA's enVision, which doesn't appear to support OpenVMS.)
I suspect someone(!) must have been down this route before - any 3rd party products or tips available?
Thank you.
0 Kudos
Reply
6 REPLIES 6
Ian Miller.
Honored Contributor

тАО05-13-2008 02:12 AM

тАО05-13-2008 02:12 AM

Re: OpenVMS & PCI DSS SEM or SIEM

On current VMS systems AES encryption is built in - this may help.
____________________
Purely Personal Opinion
Reply
Wim Van den Wyngaert
Honored Contributor

тАО05-13-2008 02:30 AM

тАО05-13-2008 02:30 AM

Re: OpenVMS & PCI DSS SEM or SIEM

Here is a list of vendors of security scanning software. Now find the one that supports VMS ...
https://www.pcisecuritystandards.org/pdfs/asv_report.html

Wim
Wim
Reply
patriceiggy
New Member

тАО06-23-2008 07:44 AM

тАО06-23-2008 07:44 AM

Solution

Re: OpenVMS & PCI DSS SEM or SIEM

I'm also being asked to comply with PCI on OpenVMS, and the only tool I've found is PointAudit, but you have to build the mapping to the PCI standard as it does not come with a ready-made template. I've also tried to look at the DISA checklist, but I only know Unix so I'm not sure how to properly translate it. I have a PCI template from the Tripwire for Solaris product we run, so I'm trying to reverse engineer that into the correct OpenVMS requirements. Please let me know if you come up with anything better as it's quite time-consuming to try to kludge this stuff together.
Reply
Hoff
Honored Contributor

тАО06-23-2008 10:06 AM

тАО06-23-2008 10:06 AM

Re: OpenVMS & PCI DSS SEM or SIEM

Please pick one spot.

You've started your own PCI thread going over in:

http://forums12.itrc.hp.com/service/forums/questionanswer.do?threadId=1243195

which is probably the best spot to continue this discussion of your question, as you have the ability to "manage" that ITRC thread, unlike this one.
Reply
danielprice
New Member

тАО07-04-2008 07:10 AM

тАО07-04-2008 07:10 AM

Re: OpenVMS & PCI DSS SEM or SIEM

I think what Graham is talking about is compliance for the monitoring of audit logs. We are also considering RSA's enVision and are wondering if there is a easy way to import the OpenVMS audit et accounting logs in this or any other SIEM tool.
Reply
Hoff
Honored Contributor

тАО07-04-2008 01:00 PM

тАО07-04-2008 01:00 PM

Re: OpenVMS & PCI DSS SEM or SIEM

The audit log file format is documented, as are the messages you receive if you tap directly into the audit server with a listener mailbox.

Unless there's an existing converter, you'll have to write one, or contract with somebody to write one for you.

There are folks around that have written syslog clients, for instance.

(I'm not aware of a commercial offering, but then I also haven't specifically gone looking for one and but can only assume you already have.)

Please do consider starting your own thread for this, rather than "threadjacking" -- while rather similar, this isn't (to my eye) exactly the same question. You can also better control your own thread, and you'll end up with a thread title that better matches your goal.
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.