Archive for Cloud Security Alliance
Perspectives
There’s no shortage of words written about Cloud computing. Even the topic of security and the Cloud yields over 28 million results on Google (13 million on Bing for those keeping score). Given how important a topic securing Cloud computing is, how is one to cut through the clutter? To help out, here are five of my favorite resources on Cloud Security:
1) Cloud Security Alliance “Security Guidance for Critical Areas of Focus in Cloud Computing”
A comprehensive look at the most important areas of security in the Cloud, written by an esteemed group of security practitioners.
2) Jericho Forum “Cloud Cube Model”
A nice paper that “provides a framework for exploring in more detail the nature of different cloud formations and the issues that need answering to make them safe and secure places to work in.”
3) ENISA’s Cloud Computing Risk Assessment
A nice risk-oriented discussion of the cloud computing business model and technologies.
4) ISACA’s Cloud Computing: Business Benefits With Security, Governance and Assurance Perspectives
A business-oriented view of cloud computing risks and governance imperitives.
5) Cloudsecurity.org and Securosis Blogs
Good, though infrequent, analysis in the Cloudsecurity.org blog. Securosis commentary from former Gartner analyst and CSA Guidance editor Rich Mogull.
Filed under: Perspectives
Tags: cloud computing, Cloud Security Alliance
Comments: No Comments
Perspectives
Tim Matthews -Senior Director Product Marketing
Unless you’ve been hiding under a rock, you’ve no doubt heard a thing or two about cloud computing. While an exciting shift for the entire industry, cloud computing is currently in “high hype mode,” where separating hope from reality can be a challenge. That’s why PGP Corporatation signed on early to sponsor the excellent work of the Cloud Security Alliance (CSA).
The CSA is a non-profit organization formed to promote the use of best practices for providing security assurance within cloud computing. The group’s first work product, “Security Guidance for Critical Areas of Focus in Cloud Computing,” is required reading for any security professional. Now the focus is on understanding how organizations are viewing security in the cloud:
The Cloud Security Alliance needs your help. We are conducting a survey to help us better understand user’s current cloud deployment plans and biggest areas of concern. The feedback generated here will assist the CSA in shaping our educational curriculum and areas of guidance over the coming months.
Please take a few minutes to complete the survey. The results will be published later this year, and will help inform the next round of security guidance. We’ll make sure to post the results here when available.
Filed under: Perspectives
Tags: Cloud Security Alliance
Comments: No Comments
This blog represents the personal opinions of certain employees of PGP Corporation and do not necessarily reflect the positions or opinions of PGP Corporation. As such, these personal opinions are not endorsed by PGP Corporation and you should conduct independent assessments before basing any decision upon the statements made in this blog.
MANAGERS, HOSTS, PARTICIPANTS, MODERATORS AND OTHER THIRD PARTIES ARE NOT AUTHORIZED PGP CORPORATION SPOKESPERSONS, AND THEIR VIEWS DO NOT NECESSARILY REFLECT THOSE OF PGP CORPORATION, AND ARE NOT ENDORSED BY PGP CORPORATION. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, PGP CORPORATION WILL HAVE NO LIABILITY RELATED TO USER CONTENT ARISING UNDER INTELLECTUAL PROPERTY RIGHTS, LIBEL, PRIVACY, PUBLICITY, OBSCENITY OR OTHER LAWS. PGP CORPORATION WILL ALSO NOT BE LIABLE FOR MISUSE, LOSS, MODIFICATION OR UNAVAILABILITY OF ANY USER CONTENT. PGP CORPORATION DISCLAIMS ALL REPRESENTATIONS, WARRANTIES, AND CONDITIONS, WHETHER EXPRESS OR IMPLIED WITH RESPECT TO THE BLOG OR BLOG CONTENT. YOUR USE OF THIS SITE AFFIRMS AGREEMENT TO THE FOREGOING.
