Whitepapers

Compliance

VMware Software-Defined Data Center

VMware® SDDC PAG for PCI DSS

This Product Applicability Guide (PAG) will provide an evaluation of VMware products that makeup and support the Software-Defined Data Center (SDDC), and how they may support the Payment Card Industry Data Security Standard, v3.2.1 (PCI DSS/PCI) controls.

vmware sdcc PAG for nist 800-53 rev 4

VMware® SDDC PAG for NIST 800-53 Rev. 4

In this Product Applicability Guide (PAG), Tevora provides an evaluation of VMware products that make up and support the Software-Defined Data Center (SDDC), and how they may support NIST 800-53 Rev. 4 (NIST 800-53) controls.

vmware sdcc PAG for nist 800-171

VMware® (SDDC) Product Applicability Guide for NIST 800-171

This Product Applicability Guide (PAG) provides an evaluation of VMware products that make up and support the Software-Defined Data Center (SDDC) and how they may support NIST 800-171 Rev. 1 (NIST 800-171) controls.

NIST SP 800-53 Updates

NIST SP 800-53 Revision 5 Updates discusses all of the important changes between Revisions 4 and 5 and how these changes will impact organizations.

NIST SP 800-53 Update – Appendix D Baseline Changes Impact

Appendix D  goes through each control family and discusses the individual changes to minimum baseline requirements put forth by FIPS 199 and 200.

FedRAMP Authorization Guide Whitepaper

This whitepaper explains what FedRAMP is and the process of becoming FedRAMP authorized/compliant.

Addendum A – Composing a FedRAMP System Security Plan

This whitepaper goes into detail and explains the System Security Plan (SSP), the main document of a security package in which the Cloud Service Provider (CSP) describes all the security controls in use on the system and their implementation, and provides necessary information needed to know about developing an SSP

Whitepaper on Cybersecurity Maturity Model Certification (CMMC)

This Cybersecurity Maturity Model (CMMC) document provides an initial evaluation of VMware products that make up and support a Software-Defined Data Center (SDDC), and how they may support the CMMC controls.

Security Solutions

2019 Threat Brief – Tevora and Source Defense Inc.

Mitigating the rapid increase of magecart-style browser session attacks via a universal website supply chain flaw.

Digital Transformations

A digital transformation can refer to any change an organization makes to a process or business activity to fully utilize the opportunity and value of technology.

VMware® Validated Design Compliance Kit for PCI DSS

The VMware Validated Design architecture strives to balance security and innovation without sacrificing one for the other.