San Diego, CA (PRWEB) May 2, 2008
As online transactions have risen, credit card companies and banks have taken steps to ensure credit card data security and prevent fraud and identity theft. The Payment Card Industry Data Security Standard audit (PCI DSS) is one way that credit companies enforce protection of sensitive information, and companies which processes credit card payments should apply for this certification. American Internet Services (AIS) has begun assisting auditors for PCI DSS certification of their colocation facility customers. For almost 15 years, AIS has served financial institutions, credit card companies, gaming companies, and online entertainment companies - all industries which process online payments and have demanding security needs.
As consumer credit card usage has become widespread, personal financial information has become increasingly vulnerable to theft and fraud. If businesses improperly handle credit card information, hundreds of thousands of users' information can be "misplaced" and open to fraud. PCI DSS describes six target areas for security: secure network designs, data encryption, virus management, strong access control, testing and monitoring networks, and information policies. For colocation facilities, the most important target area is strong access control, including restricting physical access to the servers which contain cardholder data.
As a colocation facility for financial, service, entertainment, and retail businesses, AIS has implemented a variety of security protocols and systems for customer company servers and data. PC DSS auditors, who regularly tour AIS data centers as part of their assessment, have had three primary questions:
- Is the facility physically secure, internally and externally?
- What physical access restrictions are in place?
- Are visitors, employees, and vendors logged when they enter and leave a building?
AIS has helped their data center customers by providing tours and information about their hardened, security features:
- Hand scanners
- Multiple-camera video surveillance, with 30-day archives of all footage
- Badge systems and passcards for all visitors and employees
- Logs for all client, employee, and vendor access to servers and the facility
- Server cabinet and server room locks
AIS is proud to aid their data center customers in their PCI DSS assessment process and to ensure data integrity through proven physical security measures. The AIS data center is already SAS-70 Type II certified; SAS-70 certification covers all the security parameters of PCI DSS, plus additional security and policy content areas, through a long-term audit process.
AIS has been providing colocation, outsourced data center solutions and Internet services since 1994 to Fortune 500 clients in a variety of industries, including leading financial institutions, credit card companies, government contractors, IT outsourcing providers, pharmaceuticals manufacturers, and online entertainment and gaming companies, among others. AIS also serves a broad range of small and medium-sized business customers.