A diagram from NaviSite’s website illustrates the security of its NaviCloud framework (WEB HOST INDUSTRY REVIEW) – Web hosting provider NaviSite ( www.navisite.com ) announced on Thursday that it has achieved the Cisco Advanced Managed Services Certification that recognizes NaviSite’s investment in the ITIL ( www.itil-officialsite.com ) processes to provide high-quality managed services. This news comes a month after NaviSite announced that IT solutions and software firm International Turnkey Systems deployed NaviSite’s managed cloud services . As a partner, NaviSite says it “has made an investment in a network operations center and has demonstrated the ability to support two customers, validated via an independent audit.” “This achievement represents an important milestone in the development and roll out of our cloud-based services,” R

An image from the security section of the Gossimer website, describing its strategy (WEB HOST INDUSTRY REVIEW) — Web host and domain name registrar Gossimer ( www.gossimer.com ) has revved up its server security with a new seven-layer model to ensure its hosting accounts are safer and more reliable. Gossimer announced last week it had implemented security protocols at seven different levels – data center, network, host, software, application, personal and audit processes. The seven-layer security model is laid out in detail on the security page of the company’s website .

In order to create a safe and secure environment, .CO Registry has published the Rapid Domain Compliance Process ,put into effect on December 1,2010 .

Six Tips For Application Security Monitoring Success Many organizations are using advanced log management and security information and event management (SIEM) systems in response to tightening security compliance standards, such as PCI DSS, so now could be the perfect time for forward-thinking businesses to consider pushing monitoring up the stack — into the application layer. With these SIEM and log management systems in place, organizations now have the ecosystem necessary to process all of the data coming from disparate applications into something meaningful for the security team. “PCI has driven a good ecosystem in the log management space, so the back-end technology is there,” says Gunnar Peterson, contributing analyst for Securosis and managing partner of ArcTec Group.

Symantec Closes Verisign Deal, Adds SSL Feather To Cap Symantec on Monday closed its $1.28 billion acquisition of Verisign’s identity and authentication business, upping the ante in the security industry’s fervent march toward vendors becoming one-stop shops for multiple technologies. With Verisign in the fold, Symantec is now a force to be reckoned with in SSL certificates, Public Key Infrastructure (PKI), and other trust and identity technologies. But the main value of the deal is that Symantec can now start cross-selling SSL certificates along with its security offerings, removing one of the hoops customers previously had to jump through in building their security infrastructure.

Mozilla developer exploits flaw to watch Black Hat video feed free A security expert found a way to catch the talks at Black Hat for free, thanks to bugs in the video streaming service used by the security conference. Michael Coates, the head of web security for Mozilla, said he discovered several problems while trying to sign up for the US$395 service. As he went through the sign-up procedure, he was “quickly sidetracked by a few oddities in the design,” he wrote in a blog post describing the incident.

Internet Infrastructure Reaches Long-Awaited Security Milestone Two years after a major flaw was exposed in the Internet’s Domain Name System (DNS), a major upgrade to the infrastructure protocol that fixes that weakness is now up and running in all of the Internet root servers. DNSSEC, which has been in the works for nearly two decades, was fully deployed in the root this month, the final level of deployment needed to finally get the deployment of the security protocol officially off the ground