Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Thursday, December 17, 2009

Cloud Security Alliance releases updated guidance

The Cloud Security Alliance (CSA) on Thursday released the second version of its guidance for secure adoption of cloud computing services.  The new version, Guidance for Critical Areas of Focus in Cloud Computing—Version 2.1, provides more specifics in several areas and more actionable advice, said Jim Reavis, Cloud Security Alliance co-founder and executive director.

The CSA’s guidance, which dozens of contributors helped develop, outlines key issues and provides advice across 13 domains, including incident response, encryption and key management, identity and access management, and legal and electronic discovery.

It’s designed to help organizations understand what questions to ask cloud providers, current recommended practices, and pitfalls to avoid.

In its first year, the CSA expanded its membership and now counts 23 corporate members, including heavyweights Microsoft, Cisco Systems Inc. and Hewlett-Packard Co. SearchSecurity radio:,289142,sid14_gci1377211,00.html

Posted on 12/17