Ask the Expert

How do government regulations address application security?

How do government regulations such as Health Insurance Portability and Accountability Act (HIPAA) and Gramm-Leach Bliley Act (GLBA) address Web application security?

Requires Free Membership to View

Web security is not specifically called out in HIPAA, GLBA, Sarbanes-Oxley or even the Federal Information Security Management Act (FISMA). Only general info security and system requirements are discussed. However, Visa's Payment Card Industry Data Security Standard (PCI) does have sections specifically dedicated to Web security. I predict we will see more focus on Web security in government regulations in the future due to the rapid growth toward a Web-enabled world.

More information:
* Encryption may help regulatory compliance
* Commentary: Why companies still struggle with compliance

This was first published in February 2006

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: