SecurityRatty: Cloud Security

ENISA Cloud Security Risk Assessment: An Interview with Giles Hogben

2009-11-20 13:51:42 by Craig Balding in Cloud Security

...information security benefits and key security risks of cloud computing. The report provide also provides a set of practical recommendations I highly recommend reading at least the Executive Summary (pg. 4-10) that covers top recommendations top security benefits top security risks The Risk Assessment was led by Giles Hogben and Daniele...

RSA Europe 2009 Presentation Posted

2009-10-27 19:40:20 by Craig Balding in Cloud Security

...Security. RSA gave me the go-ahead to post it on my blog so here it is What Everyone Ought To Know About Cloud Security View more presentations from craigbalding Whilst at RSA, Mirko from Help Net Security asked me to talk on a 5 minute podcast about Cloud Security from a technical perspective (thanks Mirko This was my last high level...

Tags: cloud security, cloud security issues, rsa, rsa europe, presentation, future presentations, technical, technical perspective, presentations

Slides from my BruCon Talk: The Belgian Beer Lovers Guide to Cloud Security

2009-09-21 16:00:01 by Craig Balding in Cloud Security

...security conference - strong content, excellent organisation and facilities, friendly crowd. Thanks to Benny & crew for being excellent hosts The Belgian Beer Lovers Guide to Cloud Security View more documents from craigbalding

Tags: slides, cloud security, speaker notes, brucon, notes, excellent security conference, slideshare embed, friendly crowd, strong content

Cloud Security @ Brucon

2009-09-17 08:15:45 by Craig Balding in Cloud Security

...information security conference aimed squarely at those curious about technologies from a security point of view. Im scheduled to talk about Cloud Security on the last slot on Saturday before the after-party. Conscious of the timing and location, Im employing some less-than-subtle marketing tactics to get bums on seats as youll see below...

Tags: security, cloud security, cloud, tasty belgian beer, belgian beer, beer, cloud commentators, free beer, common cloud architectures

Cloud Cartography & Side Channel Attacks

2009-08-30 21:36:55 by Craig Balding in Cloud Security

...Information Leakage in Third-Party Compute Clouds [pdf]. The abstract reads Third-party cloud computing represents the promise of outsourcing as applied to computation. Services, such as Microsofts Azure and Amazons EC2, allow users to instantiate virtual machines (VMs) on demand and thus purchase precisely the capacity they require when they...

Tags: ec2 system, ec2, ec2 instance, ec2 instances, cloud, cloud cartography, ec2 placement algorithms, instances, compare instances dom0

Introducing the Cloud Security Podcast

2009-08-01 11:38:51 by Craig Balding in Cloud Security

...Securitywell, now you can hear myself and co-host Chris Hoff of Rational Survivability discuss recent cloudsec happenings Cloud Security Podcast Episode 1 If you don't see the player above, turn on Javascript Brief show notes Introductions Quick recap of what we mean by Cloud Computing Recent news & events (with a focus on FUD Groups...

Tags: cloud, cloud securitywell, cloud security alliance, cloud security guidance, audio drop outs, co-host chris hoff, quick recap, notes, recent news

Tease: Interesting Tweets from Black Hat

2009-07-31 09:45:13 by Craig Balding in Cloud Security

...information security in general For those of us that didnt make it to Black Hat USA/Defcon, the infosec twitter community gave us the next best thing - a running commentary of the presentations - many of which feature cutting edge security research I was particularly interested in following the Sensepost presentation called Clobbering the...

Tags: sensepost, sensepost presentation, cloud, attacks, sensepost teamstay tuned, twitter, real-world attacks, infosec twitter community, tweets

Google Native Client, Google Chrome OS & Coming Out of Beta

2009-07-08 08:37:59 by Craig Balding in Cloud Security

...security & positioning with enterprises. Google Chrome Operating System Perhaps the biggest news is their plan to create a new operating system , based on the Linux kernel, running on X86 and ARM chipsets and targeted at the Netbook/Laptop/Desktop user Google Chrome OS is an open source, lightweight operating system that will initially be...

Tags: google, native client, google native client, google chrome, browser, google chrome browser, google docs, native client team, apps

Vulnerability Scanning and Clouds: An Attempt to Move the Dialog On

2009-06-28 08:29:09 by Craig Balding in Cloud Security

...Information Security community. Enterprises invest considerable time and money developing vulnerability management programs to help assess IT security risk across applications and infrastructure. Specifically, vulnerability scanners help identify potential security weaknesses at scale; e.g. missing patches, default passwords, coding or...

Tags: infrastructure, cloud infrastructure confident, providers, cloud providers websites, customers cloud services, customers cloud, customer cloud infrastructure, public iaas providers, cloud providers

Stop the Madness! Cloud Onboarding Audits - An Open Question

2009-06-16 07:33:32 by Craig Balding in Cloud Security

...information asset I need to protect and push that to a cloud broker who performs policy reconciliation to determine which of my approved provider(s) can meet my needs without any human intervention (yeah, I can hope And before everyone jumps on me and says but the point of an on-site audit/security review is to get assurance that the provider...

Tags: questions simply, questions, security questions, policy questions, express, express security policy, security policy, machine policy, machine

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo