VMware is Joining PCI Security Standards Council as Participating Organization

VMware to Participate in Key Standards-Setting Body Protecting Payment Cardholder Data; Launches Initiative to Help Retailers and Partners Build Compliant IT Infrastructures

PALO ALTO, Calif., November 12, 2008 — VMware, the global leader in virtualization solutions from the desktop to the datacenter, announced today that it is joining the PCI Security Standards Council. As a participating organization, VMware will work with the council to evolve the PCI Data Security Standard (DSS) and other payment card data protection standards. This will help those VMware customers in the retail industry who are required to meet these standards to remain compliant while leveraging VMware virtualization. VMware has also launched the VMware Compliance Center Web site, an initiative to help educate merchants and auditors about how to achieve, maintain and demonstrate compliance in virtual environments to meet a number of industry standards, including the PCI DSS.

The PCI DSS requires merchants and service providers that store, process or transmit customer payment card data to adhere to information security controls and processes that ensure data integrity. More information on the council and the standard can be found at www.pcisecuritystandards.org.

As a participating organization, VMware will now have access to the latest payment card security standards from the council, be able to provide feedback on the standards and become part of a growing community that now includes more than 500 organizations. In an era of increasingly sophisticated attacks on systems, adhering to the PCI DSS represents a significant aspect of an entity’s protection against data criminals. By joining as a participating organization, VMware is adding its voice to the process.
 
“The PCI Security Standards Council is committed to helping everyone involved in the payment chain protect consumer payment data,” said Bob Russo, general manager of the PCI Security Standards Council. “By participating in the standards setting process, VMware demonstrates it is playing an active part in this important end goal.”

“VMware recognizes the importance of compliance to our customers,” said Shekar Ayyar, vice president of infrastructure alliances, VMware. “We are pleased to join the council in order to help customers’ virtualized environments comply with the PCI DSS and other security standards. By working with the council, we are enabling our retail customers to fully leverage the business benefits of virtualization. These include lower capital and operating costs, increased business continuity, strengthened security and improved energy efficiencies, which can all be achieved while enforcing current compliance standards.”

The VMware Compliance Center Web site provides an extensive listing of virtualization compliance solutions from VMware’s technology partners; useful resources for companies, such as white papers and recorded webcasts; and case studies of companies that have successfully passed compliance audits in their VMware environments. The Web site is also useful for companies looking to meet other compliance standards, such as the Sarbanes-Oxley (SOX) Act and the Health Insurance Portability and Accountability Act (HIPAA).

VMware’s technology partners are working closely with VMware to provide integrated solutions that leverage virtualization to help customers meet compliance standards. Read what technology partners are saying about VMware’s virtualization compliance efforts at http://www.vmware.com/company/news/releases/compliance_partner.html

About PCI Security Standards Council
The mission of the PCI Security Standards Council is to enhance payment account security by driving education and awareness of PCI security standards. For more information, please visit www.pcisecuritystandards.org.

About VMware
VMware (NYSE: VMW) is the global leader in virtualization solutions from the desktop to the datacenter.  Customers of all sizes rely on VMware to reduce capital and operating expenses, ensure business continuity, strengthen security and go green. With 2007 revenues of $1.3 billion, more than 120,000 customers and more than 20,000 partners. VMware is one of the fastest growing public software companies. Headquartered in Palo Alto, California, VMware is majority-owned by EMC Corporation (NYSE: EMC).  For more information, visit www.vmware.com.

# # #

VMware is a registered trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies.