Thursday, 17 May 2012
Understanding information security in the cloud
Understanding information security in the cloud
By Allan Tan | Jan 25, 2010 | 2225 reads
0 comments
Delicious
Digg
Email
PrintVideo:
As organizations begin to migrate to the cloud en masse, there is still considerable confusion about how best to handle information security in the cloud.
According to the RSA Security Brief published in November 2009 entitled “Identity & Data Protection in the Cloud: Best Practices for Establishing Environments of Trust”, what’s needed to make cloud computing a truly ubiquitous services platform is a higher degree of trust, particularly between the owner-providers of cloud resources and the companies that use those resources.
Vincent Goh, Managing Director, Southeast Asia, RSA, shares excerpts from the report, which includes best practices for managing trust when venturing into the cloud. He elaborates on the following 3 key points:
- Link cloud management policies to SLAs for accountability
- Ensure regular and credible audit process to measure success of implementation
- Understanding cloud-based technologies as they evolve and adapt to the changes accordingly
Similar
Add comment
knowledge_central_tab
Knowledge Central
Trusted Mobility Index
The mobile ecosystem of devices, services and networks is at a critical inflection point.While the mobile revolution is unleashing massive opportunities in both emerging and mature economies, it is also increasing in complexity and confusion. The reality is the lightning-fast adoption of powerful, smart devices is outpacing society’s ability to secure them. Today, trust in mobility hangs in the balance.
The state of the Internet, Q4, 2011
Geography appears to play a role in frequency of observed attacks on specific ports. For example, Port 23 (Telnet) is a favorite target for attacks observed to be originating from South Korea and Turkey, where it accounted for more than five times the number of attacks targeting the next most popular port (445 in both countries). Other instances of geography-based port targeting include observed attacks centered on Port 1433 (Microsoft SQL Server) in China and on Port 80 (WWW/HTTP) in Indonesia.
HID Global deploys a centralized, web-based IP access control solution at Fuxi Power Plant
Unable to meet the needs for real-time monitoring with its traditional patrol system, China's Fuxi Power Plant has deployed HID Global's VertX V2000.
StubHub: How to spot fraud before it happens
Whenever a list of log-on credentials is dumped onto the Web, retailers get hit with waves of automated attacks. Here's how ticket marketplace StubHub fights the threat.
