Solidcore Provides New Control and Security for Critical Retail Systems

Solidcore Systems, Inc., the supplier in securing retail and point-of-service systems, announced its Integrity Monitoring Solution for IBM 4690 point of sale (POS) environments.  The solution is the first of its kind to monitor and alert on changes to IBM 4690 POS Controllers, which provide both the application and operating system images to the client terminals in many of today's retail environments.  IBM 4690 systems represent a large install-base of retail POS systems and Solidcore's capabilities for monitoring the integrity of these systems will help retailers using these systems to quickly verify Payment Card Industry (PCI) compliance.

According to Greg Buzek, president of the IHL Group, "IBM 4690 POS terminal sales drove $1.02 billion in hardware, software, and maintenance in 2007, and there is a significant installed base within the category of superstores/warehouses and mass merchants that rely on this operating system with 64% of the installed base."  While IBM 4690 technology has proven itself over time, meeting the intent of PCI compliance across these platforms has been difficult to accomplish.  Solidcore's Integrity Monitoring for IBM 4690 provides the visibility, monitoring and audit reporting capabilities that retailers need to fulfill the PCI compliance mandates for alerting personnel to unauthorized modifications of critical system or content files.

Solidcore provides the 4690 Integrity Monitoring solution with two distinct components.  The first is the capability to assess a "gold" image of the POS Controller with field deployed images and report on any differences in executables.  This feature allows for the creation of executive-level compliance reports that ease the audit process.  The second component takes the initial baseline assessment and provides configurable alerting on changes to executables and files.  This feature provides information on what is changing and can be a positive means for verifying that authorized changes, such as updated data files for coupon engines and pricing, are properly distributed to the POS Controllers.  The retailer or a qualified security assessor (QSA) can provide the assessment and determine what level of granularity to focus on for monitoring authorized and unauthorized changes.

These new capabilities are part of Solidcore's POS Check and Control solution, which provides a single interface for integrity monitoring across IBM 4690, Windows or Linux based POS environments. This simplifies the path to PCI compliance for retailers with heterogeneous environments.
Share to:
Comments ( 0 )