Red Hat wants to make sure it addresses all the cloud security issues that it can, so it’s started a program to certify that its software runs safely in the cloud.
Cloud computing may offer a new form of data defense by bringing into play the maneuverability of data to secure it from attacks while the source of the attack can be pinpointed and neutralized, a blogger suggests.
Asked to flash its cloud security credentials at an industry forum, Google pointed to its SAS 70 certification, giving more support to that set of standards as a measure of how well cloud providers lock down customer data.
Half the companies that use or plan to use cloud computing services don't know how they will square that use with the need to insure that data integrity and compliance with standards and policies.
Internal clouds – those owned by individual businesses for their own use – might be the only way around the security concerns some businesses may have with cloud services.
SAS 70 - the auditing standard used by CPAs to evaluate the processing of transactions - is emerging as one of the key ways to evaluate cloud service provider security.
Microsoft has published security policies it applies to its cloud services, and sheds some light on what might ultimately develop as industry standards for securing these services.
Attackers have used public cloud computing infrastructure to lay the groundwork for attacks, a security researcher has found based on consulting with his business customers.
The Jericho Forum and the Cloud Security Alliance have made a formal commitment to jointly develop and promote best security practices in cloud computing.
Data loss is possible anywhere, including in the networks of cloud computing providers, but the unique challenges there are significant enough that they are getting a special look from insurers.
The National Institute of Standards and Technology is going to weigh in on cloud computing and has started by working on a definition of what cloud computing is.
The most basic facts about your data – like where it is exactly and how it is replicated – become difficult to find out when you entrust it to a cloud, a new study says.
At the recent RSA conference an attorney pointed out that cloud services have an impact on e-discovery - the turning over of electronic documents in response to lawsuits.
A survey released this week at RSA is troubling in that it says businesses using cloud services are concerned about security, but don't verify what providers do to meet the security promises they make.
The Jericho Forum next week plans to release its spin on the security of cloud computing with the perhaps surprising belief that using a cloud can actually be more secure than running applications and databases out of corporate data centers.
Cloud computing providers no doubt put forth a best effort to secure their infrastructure in order to protect their customers' data, but what kind of guarantees are there?
The term cloud comes from the old WAN diagrams that show the service provider's network as a puffy cloud that all the access lines run into. The point of the metaphor is that you plug into an entity whose inner workings are obscure, but you believe it will do what you want it to do. (The leap of faith for a transport service provider was scary enough, but with cloud computing, it's even scarier. Your data isn't just passing through, it lives there.)
The Leader in Network Knowledge
