McAfee TSA00M005PAA Processor Guide - Page 120

Using the SaaS Vulnerability Scanning Service Certification programs • C omplies with credit card issuers by meeting the vulnerability scanning requirements of the Payment Card Industry (PCI) data security standard. • P rovides advanced web application scanning and finds BlindSQL and Server-side Include vulnerabilities with 99% accuracy. Types of vulnerabilities detected The SaaS vulnerability scanning service tests for all vulnerabilities in the following general categories: • B ackdoors, Remote Controls, and Trojan Horse Programs • C GI and Form Processing Vulnerabilities (including SQL Injection) • D efault Passwords • A ll Database Servers • A ll Microsoft Versions • U NIX and Linux • E mail Services • N ews and Chat Services • R emote Administration Access • R emote Database Access • R emote File Access • T CP Ports • R PC • S MB/NetBIOS • ICMP • H TTP XSS • S NMP • S NTP • U DP • F TP and Telnet • X ML Services • R outers and Load Balancers • F irewalls and Addressable Switches Certification programs The SaaS vulnerability scanning service provides optional certification programs to ensure that your website meets the highest standards for security. PCI certification program Ensures that your website always complies with the Payment Card Industry Data Security Standard (PCI DSS ) by providing the tools needed to complete the PCI certification process, remain in compliance, and create quarterly validation reports. McAfee® SECURE™ Trustmark certification program Adds the McAfee SECURE trustmark to your website as proof that it meets the rigorous certification requirements for compliance with the McAfee SECURE data security standard. This program requires daily scanning of your McAfee SECURE devices. McAfee Total Protection Service Product Guide 120