RSS Alerts

Cloud Security Alliance (CSA)

Areas of expertise:
The Cloud Security Alliance comprises many subject matter experts from a wide variety of disciplines, united in our objectives: to promote a common level of understanding between the consumers and providers of cloud computing regarding the necessary security requirements and attestation of assurance; to promote independent research into best practices for cloud computing security; to launch awareness campaigns and educational programs on the appropriate uses of cloud computing and cloud security solutions; and to create consensus lists of issues and guidance for cloud security assurance.

Biography:
The Cloud Security Alliance (CSA) is a non-profit organization formed to promote the use of best practices for providing security assurance within Cloud Computing, and provide education on the uses of Cloud Computing to help secure all other forms of computing.

Tag Cloud

cloud computing David Harley encryption cloud security compliance Cloud Security cybersecurity

Bloggers

Blog

Follow and talk to Infosecurity's bloggers.

Follow Infosecurity's bloggers as they share their thoughts on the industry, technology, and much more. Our bloggers have been selected for their industry expertise. They welcome interaction, so we encourage you to add your opinions to theirs.

All Bloggers » Cloud Security Alliance (Csa)
0
comments
Building Trust and Security through Transparency of Service
By David Baker With the growing movement of enterprises to the cloud, it’s more important than ever that service providers demonstrate and prove good security practices to their customers, in good times and in bad. During an incident, how a cloud provider communicates to its customers says a ...
Posted 21 May 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, cloud security, transparency, SLA, trust, business continuity, availability
0
comments
Plugging "Cloud Identity Leaks": Why Your Business Should Become an Identity Provider
By Mark O’Neill Most people have used the Facebook, Twitter, or Google Apps buttons located on websites to log into third-party services. This approach is useful within consumer IT as it enables the user to access various services via their own Facebook, Twitter or Google Apps passwords witho ...
Posted 15 May 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, cloud security, identity, identity provider
0
comments
Security Check List: An Ounce of Prevention is Better than a Pound of Cure
By Wolfgang Kandek It is common belief that buying more robust and expensive security products will offer the best protection from computer-based attacks; that ultimately the expenditure pays off by preventing data theft. According to Gartner, more than $50 billion is spent annually on security inf ...
Posted 30 April 2013 by Cloud Security Alliance (CSA)
tags: patch management, security education, security controls
0
comments
Identity Management Plays a Key Role in Mobile Device Management (MDM)
By Dan Dagnall As BYOD and other mobile device related initiatives take hold, sooner rather than later, identity management will once again be considered as an enforcement mechanism; and rightly it should. Identity and access management (IAM) has grown up over the years. Its early beginnings were ...
Posted 30 April 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, MDM, identity, IAM, BYOD
0
comments
How to Adopt the Public Cloud While Attaining Private Cloud Control and Security
By Gerry Grealish Earlier this year, McKinsey & Company released an article titled “Protecting information in the cloud,” discussing the increased use of cloud computing by enterprises across several industries and the benefits and risks associated with cloud usage. The article reco ...
Posted 26 April 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, public cloud, private cloud, encryption, encryption gateway
0
comments
Cloud-Based Identity Management: Best Practices for Rapid End-User Adoption
By Glenn Choquette Identity Management (IdM) is not new. Yet, after all this time on the market, organizations still have mixed results for end-user adoption, as many organizations that rolled-out IdM years ago still haven’t achieved their goals: end-users keep calling the help desk to reset ...
Posted 26 April 2013 by Cloud Security Alliance (CSA)
tags: identity, cloud computing, IdM
0
comments
Cloud APIs - the Next Battleground for Denial-of-Service Attacks
By Mark O’Neill In recent months, there have been a number of highly publicized cyber attacks on US banks. These attacks took the form of Distributed Denial of Service (DDoS) attacks, involving enormous amounts of traffic being sent to internet-facing banking services, rendering them unusable ...
Posted 13 April 2013 by Cloud Security Alliance (CSA)
tags: DDoS, API, cloud computing, mobile apps
0
comments
Going Up? Safety First, then Send your Data to the Cloud
By Joe Sturonas As the proliferation of data continues to plague businesses, the pressure is on for companies to migrate away from their physical data centers. Cloud computing is being adopted at a rapid rate because it addresses not only the costs for physical space, but also rising energy costs a ...
Posted 28 March 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, compliance, encryption
0
comments
How to Harden Your APIs
By Andy Thurai The market for APIs has experienced explosive growth in recent years, yet the major issues that providers still face are protection and hardening of the APIs that they expose to users. In particular, when you are exposing APIs from a cloud-based platform, this becomes very difficult ...
Posted 26 March 2013 by Cloud Security Alliance (CSA)
tags: API, cloud computing, identity, encryption, tokenization
0
comments
Three Critical Features that Define an Enterprise-Grade Cloud Service
By David Baker The line between enterprise and consumer is fading as employees work from all manner of devices to access the on-premises, cloud and even consumer applications needed to get work done. But it’s important to not confuse enterprise and consumer services from a security standpoint ...
Posted 22 March 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, encryption, CSA STAR
0
comments
Why Should I Get My Certificate of Cloud Security Knowledge (CCSK)? Or Train to be a CCSK Trainer?
“The CSA, in providing a set of goals through the CCSK, is challenging security practitioners to become the cloud thought-leaders we need today and tomorrow to ensure safe and secure cloud environments. In developing the CCSK, CSA is 'setting the bar' for security professionals and providing ...
Posted 20 March 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, certification, training, professional development, CCSK
0
comments
The Shrinking Security Model: Micro-perimeters
By Ed King As cloud and mobile computing make enterprise IT ever more extended, the traditional security model of keeping the bad guys out and allowing only the good guys in no longer works well. While the reach of the enterprise has expanded, the security perimeter may actually have to shrink to ...
Posted 20 March 2013 by Cloud Security Alliance (CSA)
tags: authentication, SSO, cloud computing, API
2
comments
When Good Is Not Good Enough: NIST Raises the Bar for Cloud Data Protection Vendors
By David Stott Earlier this year, the US National Institute of Standards and Technology (NIST) released a publication titled Cloud Computing Synopsis & Recommendations (Special Publication 800-146) describing in detail the current cloud computing environment, explaining the economic opport ...
Posted 21 February 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, NIST, encryption, SaaS, FIPS 140-2, tokenization
0
comments
The Battle of the Titans: What it all means for IT managers caught in the middle
By Cesare Garlati Adapt, accept and manage: a BYOD mantra for corporate IT RIM and Apple: two firms with more contrasting current fortunes you could not wish to imagine. The once high-flying Canadian BlackBerry-maker, for so long the darling of IT managers and beloved of time-starved execs the w ...
Posted 31 October 2012 by Cloud Security Alliance (CSA)
tags: Apple, RIM, BlackBerry, iPhone, iPad, iOS, consumerization
0
comments
The High Costs of Securing Identities: How to Fix the Problem Using the Cloud
By Dan Dagnall Identity management is well down the path of a mature market space. But I believe there is still one final, fundamental disconnect that is driving up the cost of deploying and maintaining an identity management solution, and that is programming and customization. For example, one c ...
Posted 26 October 2012 by Cloud Security Alliance (CSA)
tags: identity, cloud computing
0
comments
Context + Analytics = Good Security
By Jon-Louis Heimerl Data [dey-tuh] noun: individual facts or statistics Information [in-fer-mey-shuhn] noun: knowledge concerning a particular fact or circumstance When does data become consumable information? When we correctly manage security, we integrate security devices into our infrastr ...
Posted 17 October 2012 by Cloud Security Alliance (CSA)
tags: analytics, cloud computing, compliance, Big Data
0
comments
Removing Cloud Barriers in Europe
By David Stott No one is immune to the ever-changing technology forecast, but one constant (at least for the near future) appears to be global cloud cover. Cloud computing is arguably the most dominant theme on every enterprise’s IT list, but in Europe, it’s being met with some key cha ...
Posted 10 October 2012 by Cloud Security Alliance (CSA)
tags: cloud computing, Europe, data privacy, EU
0
comments
Riding the Consumerization Wave
By Cesare Garlati Rather than resist it, organizations should embrace Consumerization to unlock its business potential. This requires a strategic approach, flexible policies and appropriate security and management tools. The Consumerization of IT is the single most influential technology trend of ...
Posted 07 October 2012 by Cloud Security Alliance (CSA)
tags: BYOD, consumerization, MDM
1
comment
The Impact of Computing Power on Cryptography
By Eric Hay Advanced technology is a beautiful thing. Not only has it enabled the creation of new, more efficient methods of application delivery and data storage (the Cloud is a prime example), but it’s also helped propel the development of more sophisticated solutions for data protection as ...
Posted 21 September 2012 by Cloud Security Alliance (CSA)
tags: cryptography, cloud computing, supercomputing, encryption, tokenization
0
comments
Managing Consumer Technology in the Enterprise - Why IT Needs to Change its Mindset
By Cesare Garlati Talking regularly about the consumerization of IT can often make one sound like a broken record, but the economic, security and management challenges it throws up for enterprises are too important to ignore. The problems boil down to a lack of control, which can be described in t ...
Posted 19 September 2012 by Cloud Security Alliance (CSA)
tags: consumerization, BYOD, compliance and policy
12345NEXTLAST
Showing 1 - 20 of 83 blogs
View the RSS feed for this blog »
Terms & Conditions | Privacy | Website Design| Reed Exhibitions. All rights reserved. Copyright © 2013
We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×