The myths Raggo pointed out involved a false sense of confidence many feel when they have a firewall in place or if they have a policy of not allowing a wireless [image-nocss] network into their system. Unfortunately, laptops, hand-helds and numerous other devices can provide access into a chain's system or be a resource for information going out.
"The most common way for data [theft to occur] is 'extrusion'," Raggo said. "That's with data going out through an access point into the airspace."
Data packets holding passwords can surface through routine communications without employees being aware of the vulnerability. What makes matters worse is that detecting what he called "rogue" access points is extremely difficult, especially when a network has dozens, hundreds or even thousands of entry points.
Data thieves today can simply sit in a parking lot looking for wireless access points, capture data packets and go home to sift through them later. This environment makes vigilance important, and Raggo encouraged attendees to keep learning and incorporating new solutions on a regular basis.
Raggo, product manager for Motorola AirDefense Solutions, Alpharetta, Ga., was one of several speakers addressing the PCATS annual conference, where data security and compliance to Payment Card Industry (PCI) standards and its upcoming deadlines are priorities.
"Data security is the biggest issue we've got right now," said Scott Wood, executive director for the Stafford, Va.-based PCATS. Wood said that the PCI councilpart of the major credit-card issuers' efforts to mandate certain levels of data securityis working with the industry to help c-store retailers raise their standards.
A window of opportunity exists for PCATS to help influence how these standards affect the complex world of convenience retail, Wood said. Though he described this period of cooperation as being "on a tight timetable," retailers attending the conference were working diligently to help develop an agenda the industry can live with.
"[The PCI council] wants our input," Wood said.
The 2010 PCATS Conference in New Orleans ends today.
Members help make our journalism possible. Become a CSP member today and unlock exclusive benefits, including unlimited access to all of our content. Sign up here.