05-26-2010 03:56 AM
sorry for making such thread here as i know this forum is for technical issue
i had searched the whole Aruba site to find a Document that describes Aruba Compliance with different security standards like PCI and HIPPA,......etc,
as one of my customers asked me for that document
anybody here has came across such document in Aruba site?
thanks in advance
05-26-2010 04:00 AM
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base
Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs
05-26-2010 04:26 AM
thanks for your quick reply and useful information,
OK is there an official document from Aruba that states that Aruba Solutions are compliant with this standards
thnx in advance
05-26-2010 07:51 AM
One of our big strengths in PCI and HIPAA specifically, is our firewall. Most PCI and HIPAA compliance requirements want some kind of security boundary like a firewall. In the past with the older legacy stuff, you had a wireless VLAN that was firewalled off from the LAN or required to be in the DMZ. With us, using PEF, you can apply the firewall boundary at the user. In addition, PCI and HIPAA requires WIDS in most cases to look for rogues. Again, this comes integrated within a single product. So from a PCI or HIPAA compliance perspective, most every major category is addressed, to which the last leg of validation depends on you (the network and wireless admin) to have strong authentication, good firewall policies, etc.
You can also look at products like AirWave, which will look at the existing configuration and run it against a checklist of the standards, and it can tell you where you might be breaking the rules, or might be at risk of breaking the rules (http://www.airwave.com/industries/retail/ and http://www.airwave.com/industries/healthcare/).
/former Hertz security audit coordinator heh
Sr. Techical Marketing Engineer