Latest in Cloud Computing Standards. Eric A. Hibbard, CISSP, ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems

Size: px
Start display at page:

Download "Latest in Cloud Computing Standards. Eric A. Hibbard, CISSP, ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems"

Transcription

1 Latest in Cloud Computing Standards Eric A. Hibbard, CISSP, ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems 1

2 Short Introduction CTO Security & Privacy, Hitachi Data Systems Involved with a bunch of organizations International Representative, INCITS TC CS1 Cyber Security Co-Chair, Cloud Security Alliance (CSA) International Standardization Council (ISC) Co-Chair, American Bar Association SciTech Law ediscovery & Digital Evidence Committee Vice Chair, American Bar Association SciTech Law Cloud Computing Committee Chair, IEEE Information Assurance Standards Committee (IASC) Chair, SNIA Security Technical Work Group Vice Chair, IEEE Security in Storage Work Group (P1619) Standards Geek Co-Editor, ISO/IEC (Cloud computing Overview and terminology) Editor, ISO/IEC (Storage security) Editor, ISO/IEC (ediscovery Overview and concepts) Editor, ISO/IEC (ediscovery Code of practice) Editor, IEEE Std 1619r (XTS-AES) Security Professional 30+ years ICT experience; 15+ years security & privacy Government (NASA, DoE, DoD), academia (University of California), and industry Certifications: CISSP, ISSAP, ISSMP, ISSEP, CISA 2

3 Standards Alphabet Soup CSA = Cloud Security Alliance DMTF = Distributed Management Task Force ENISA = European Network and Information Security Agency ETSI = European Telecommunications Standards Institute IEC = International Electrotechnical Commission IEEE = Institute of Electrical and Electronics Engineers INCITS = International Committee for Information Technology Standards ISO = International Organization for Standardization ITU-T = International Telecommunication Union Telecom NIST = National Institute for Standards and Technology OASIS = Organization for the Advancement of Structured Information Standards SNIA = Storage Networking Industry Association TCG = Trusted Computing Group 3

4 Sample Cloud SDO Relationships CSA ITU-T CT-CC ENISA ISO/IEC SC27 ISO/IEC SC38 TCG INCITS/ CS1 INCITS/ DAPS38 Formal Informal IEEE NIST SNIA DMTF 4

5 Standards & Glaciers Similar Pace 5

6 Cloud Computing cloud computing: paradigm for enabling network access to a scalable and elastic pool of shareable physical or virtual resources with self-service provisioning and administration on-demand SOURCE: ISO/IEC DIS Resolution ITU-T X.ccdef (Information technology Cloud computing Overview and vocabulary) 6

7 ISO/IEC JTC 1/SC 38 SC38 = Information Technology Distributed Application Platforms & Services ISO/IEC (Cloud computing Vocabulary and overview) Collaborative Team (CT) with ITU-T/SG13 to develop common text Defines key cloud terminology and provides an overview of cloud computing Intended to be a foundation document for cloud computing Stage: Draft International Standard (DIS); ballot closes 3/24/2014 ISO/IEC (Reference architecture) Collaborative Team (CT) with ITU-T/SG13 to develop common text Covers general concepts and characteristics of cloud computing, the components/functions and roles and their capabilities and inter-relationships Focused on the requirements of what Cloud services provide, not how to design solutions and implementations Stage: Draft International Standard (DIS); ballot closes 3/24/2014 7

8 ISO/IEC JTC 1/SC 38 (cont.) ISO/IEC (Service Level Agreement Guidance) Provides an overview of SLAs for cloud services Identifies the relationship between the master service agreement and the SLA Addresses SLA concepts and requirements that can be used to build SLAs Specifies terms and conditions as well as metrics commonly used in SLAs for cloud services Seeks to establish a set of common SLA building blocks (concepts, terms, definitions, contexts) that can then be used to create SLAs that will help avoid confusion and facilitate common understanding between the Cloud Service Providers and the Cloud Service Customers Stage: Working Draft (WD) 8

9 ITU-T/Study Group 13 (SG13) Future networks including cloud computing, mobile and nextgeneration networks Y.ccdef (ISO/IEC 17788) Cloud computing definition and vocabulary Y.cceco Cloud computing: ecosystem, use cases and general requirements Y.Cloud-SIDE-Reqts High level requirements and capabilities for cloud enabled service environment Y.ccic Framework of inter-cloud for network and infrastructure Y.ccinfra Cloud computing infrastructure requirements Y.ccra (ISO/IEC 17789) Cloud computing reference architecture Y.e2eccrmr End-to-end cloud computing resources management requirements Y.VNC Resource control and management for virtual networks for cloud services (VNCs) 9

10 ITU-T/Study Group 17 (SG17) Security X.1600 (X.ccsec) High-level security framework for cloud computing X.cc-control (ISO/IEC 27017) Guidelines supporting the implementation of information security controls for cloud service providers and cloud service customers of cloud computing services X.goscc Guidelines of operational security for cloud computing X.sfcse Security functional requirements for Software as a Service (SaaS) application environment X.ccidm Requirement of IdM in cloud computing 10

11 ISO/IEC JTC 1/SC27 SC27 = Information Technology Security techniques ISO/IEC (Code of practice for information security controls for cloud computing services based on ISO/IEC 27002) Common text standard with ITU-T/SG17 Additional implementation guidance for relevant information security controls specified in ISO/IEC 27002; and Additional controls and implementation guidance that specifically relate to cloud computing services. Technical Report => International Standard Stage: Committee Draft (CD) ISO/IEC (Code of practice for data protection controls for public cloud computing services) Applies to organizations providing public cloud computing services that act as PII processors (possibly PII controllers) Establishes commonly accepted control objectives, controls and guidelines for implementing controls to protect Stage: Draft International Standard (DIS) 11

12 ISO/IEC JTC 1/SC27 (cont.) ISO/IEC (Information security for supplier relationships Part 4: Guidelines for security of cloud services) Provides cloud service acquirers and suppliers managing the information security risks caused by using cloud services integrating information security processes and practices into the cloud based product and service life cycle processes responding to risks specific to the acquisition or provision of cloud-based services Define guidelines supporting the implementation of Information Security Management for the use of cloud service Stage: 2 nd Working Draft (WD) ISO/IEC (Storage security) Overview of storage security concepts and related definitions Guidance on the threat, design and control aspects associated with typical storage scenarios and storage technology areas Secure multi-tenancy Limited coverage for cloud storage (e.g., CDMI) Stage: Draft International Standard (DIS) Numerous other security standards that are potentially relevant! 12

13 Standards Setting Organizations (SSO) & Industry Associations 13

14 NIST Information Technology Laboratory Special Publication , Guidelines on Security and Privacy in Public Cloud Computing Special Publication , The NIST Definition of Cloud Computing Special Publication , Cloud Computing Synopsis and Recommendations Special Publication , NIST Cloud Computing Standards Roadmap Special Publication , NIST Cloud Computing Reference Architecture Special Publication , (Draft). US Government Cloud Computing Technology. Special Publication , (Draft) NIST Cloud Computing Security Reference Architecture Interagency Report 7904, (Draft) Trusted Geolocation in the Cloud: Proof of Concept Implementation 14

15 Cloud Security Alliance (CSA) Security Guidance for Critical Areas of Focus in Cloud Computing Open Certification Framework Cloud Controls Matrix (CCM) Trusted Cloud Initiative (TCI) Reference Architecture Model Top Threats to Cloud Computing Security as a Service (SecaaS) Implementation Guidance Many others 15

16 OASIS Cloud Application Management for Platforms (CAMP) Identity in the Cloud (IDCloud) Symptoms Automation Framework (SAF) Topology and Orchestration Specification for Cloud Applications (TOSCA) Cloud Authorization (CloudAuthZ) Public Administration Cloud Requirements (PACR) 16

17 Other Cloud Activities of SSOs & IAs IEEE Standards Association (IEEE-SA) P Guide for Cloud Portability and Interoperability Profiles (CPIP) P Standard for Intercloud Interoperability and Federation (SIIF) Trusted Computing Group (TCG) Trusted Multi-Tenant Infrastructure (TMI) Use Cases Trusted Multi-tenant Infrastructure (TMI) Specification [Goal] Storage Network Industry Association (SNIA) Cloud Data Management Interface (CDMI) specification ISO/IEC 17826: 2012, Information technology -- Cloud Data Management Interface (CDMI) [CDMI v1.0.2] The Open Group Service-oriented Cloud Computing Infrastructure (SOCCI) Framework Cloud Computing Reference Architecture (CCRA) 17

18 Other Cloud Activities of SSOs & IAs Distributed Management Task Force (DMTF) DSP0243 Open Virtualization Format (OVF) ISO/IEC 17203:2011, Information technology -- Open Virtualization Format (OVF) specification DSP0263 Cloud Infrastructure Management Interface (CIMI) Model and REST Interface over HTTP Specification DSP0264 CIMI-CIM Specification Internet Engineering Task Force (IETF) RFC 6208 Cloud Data Management Interface (CDMI) Media Types Draft RFCs Cloud Based Mobile Core Network Problem Statement Cloud Reference Framework Accessing Cloud Services Cloud Networking: VPN Applicability and NVo3 Gap Analysis Network as a service requirement in cloud datacenter An Architecture for a Secure Cloud Collaboration System Huge number of RFCs that enable the cloud. 18

19 Key Developments 19

20 NIST View of the Cloud 20

21 Shifting Cloud Concepts (1) NIST Essential Characteristics => Key Characteristics Cloud Deployment Models (Public, Private, Hybrid, Community) Major Cloud Computing Roles Cloud Service Customer (includes cloud service user) Cloud Service Provider Cloud Service Partner (includes cloud auditor and cloud service broker) Key Cross Cutting Aspects Auditability, availability, governance, interoperability, maintenance and versioning, performance, portability, privacy, regulatory, resiliency, reversibility, security, service levels and service level agreements 21

22 Shifting Cloud Concepts (2) Cloud Capability Types Application Capabilities Type cloud service customer can use the cloud service provider s applications Platform Capabilities Type cloud service customer can deploy, manage and run customer-created or customer-acquired applications using one or more programming language and one or more execution environments supported by the cloud service provider Infrastructure Capabilities Type cloud service customer can provision and use processing, storage and networking resources NIST Service Models => Cloud Service Categories All Cloud Service Categories defined using one or more Cloud Capability Types Accommodates NIST and ITU-T service models Allows for a near infinite number of Cloud Service Categories (start your marketing engines) 22

23 Service Categories vs. Capability Types Cloud Service Categories Software as a Service Platform as a Service Infrastructure as a Service Cloud Capabilities Types Infrastructure Platform Application X Network as a Service X X X Data Storage as a Service X X X Compute as a Service X Communication as a Service X X Database as a Service X X Desktop as a Service... Washing-machine as a Service (WaaS) Security as a Service X X X X X X 23 SOURCE: ISO/IEC DIS Resolution ITU-T X.ccdef

24 Cloud Computing Reference Architecture (Functional Components) 24

25 CSA & Standards 25

26 CSA Interactions with SDOs International Standards Council (ISC) Primary CSA interface with Standards Development Organizations Operates similar to a National Body mirror committee Current ISC representatives from CA, CN, DE, FR, GB, HK, SG, TW, US Membership application is available to active corporate members Formal Liaison Relationships: ISO/IEC JTC 1/SC 27 Category A ISO/IEC JTC 1/SC 38 Category A ITU-T (Study Group 13 & 17) A.4 & A.5 Tracking many other organizations 26

27 Primary SDO Focus Primary Interest in SC27 Projects ISMS: ISO/IEC 27001, ISO/IEC Cloud: ISO/IEC ITU-T X.cc-control, ISO/IEC 27018, ISO/IEC SC27 Projects of Interest: ISO/IEC 27009, ISO/IEC 27021, ISO/IEC 27035, ISO/IEC (Supply chain security), ISO/IEC (Storage security), ISO/IEC (SEIM), ISO/IEC (ediscovery) SC38 Projects ISO/IEC ITU-T X.ccdef, ISO/IEC ITU-T X.ccra, ISO/IEC (SLA) ITU-T Projects X.1600 (X.ccsec), X.goscc, X.sfcse 27

28 CSA ISC Contact Details ISC Standard Secretariat Aloysius Cheang Managing Director APAC Cloud Security Alliance Member, SG NB Co-Chairs Andreas Fuchsberger Regional Standards Officer Microsoft Member, GB NB Eric A. Hibbard CTO Security and Privacy Hitachi Data Systems Member, US NB 28 https://cloudsecurityalliance.org/isc/

29 Final Thoughts A significant number of the cloud computing standards and specifications are still in draft form There are many organization operating in this space, but it does appear there are conscious efforts to avoid duplication and contradiction It is unlikely that a single, all-encompassing standard (or source for standards) will emerge for cloud 29

30 30

Lifting the Fog Around Cloud Computing. Eric A. Hibbard, CISSP-ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems

Lifting the Fog Around Cloud Computing. Eric A. Hibbard, CISSP-ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems Lifting the Fog Around Cloud Computing Eric A. Hibbard, CISSP-ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems 1 Straw Poll Cloud Awareness A. To truly understand clouds one should

More information

Cloud Computing Standards: Overview and first achievements in ITU-T SG13.

Cloud Computing Standards: Overview and first achievements in ITU-T SG13. Cloud Computing Standards: Overview and first achievements in ITU-T SG13. Dr ITU-T, Chairman of Cloud Computing Working Party, SG 13 Future Networks Orange Labs Networks, Cloud & Future Networks Standard

More information

Attacking the roadblocks preventing aggressive adoption of Cloud Standards:

Attacking the roadblocks preventing aggressive adoption of Cloud Standards: Attacking the roadblocks preventing aggressive adoption of Cloud Standards: How SNIA and other standards orgs are developing standards that benefit high priority use cases. John Eastman, CTO, Presented

More information

Cloud Computing Standards: Overview and ITU-T positioning

Cloud Computing Standards: Overview and ITU-T positioning ITU Workshop on Cloud Computing (Tunis, Tunisia, 18-19 June 2012) Cloud Computing Standards: Overview and ITU-T positioning Dr France Telecom, Orange Labs Networks & Carriers / R&D Chairman ITU-T Working

More information

Comparative Analysis of SOA and Cloud Computing Architectures using Fact Based Modeling

Comparative Analysis of SOA and Cloud Computing Architectures using Fact Based Modeling Comparative Analysis of SOA and Cloud Computing Architectures using Fact Based Modeling Baba Piprani 1, Don Sheppard 2, Abbie Barbir 3 1 MetaGlobal Systems, Canada 2 ConCon Management Services, Canada

More information

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY. Eric A. Hibbard, CISSP, CISA Hitachi Data Systems

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY. Eric A. Hibbard, CISSP, CISA Hitachi Data Systems A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY Eric A. Hibbard, CISSP, CISA Hitachi Data Systems SNIA Legal Notice The material contained in this tutorial is copyrighted by the SNIA unless otherwise

More information

6 Cloud computing overview

6 Cloud computing overview 6 Cloud computing overview 6.1 General ISO/IEC 17788:2014 (E) Cloud Computing Overview Page 1 of 6 Cloud computing is a paradigm for enabling network access to a scalable and elastic pool of shareable

More information

Securing Data While Leveraging Virtualized and Cloud Storage

Securing Data While Leveraging Virtualized and Cloud Storage Securing Data While Leveraging Virtualized and Cloud Storage Eric A. Hibbard, CISSP, CISA, ISSAP, ISSMP CTO Security & Privacy Hitachi Data System Welcome to the Virtual Jungle The Setup Virtualization

More information

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY Eric A. Hibbard, CISSP, CISA, ISSAP, ISSMP, ISSEP, SCSE Hitachi Data Systems Author: Eric A. Hibbard, Hitachi Data Systems SNIA Legal Notice The material

More information

Cloud Standards - A Telco Perspective

Cloud Standards - A Telco Perspective Cloud Standards - A Telco Perspective Abdellatif Benjelloun Touimi abdellatif.benjelloun@huawei.com Corporate Standards Department www.huawei.com TEN YEARS OF CONNECTING EUROPE HUAWEI TECHNOLOGIES CO.,

More information

ca IT Leaders Forum Working in the Cloud using the new ISO/IEC/ITU-T Cloud Computing Standards Dr David Ross, Chief Information Security Officer,

ca IT Leaders Forum Working in the Cloud using the new ISO/IEC/ITU-T Cloud Computing Standards Dr David Ross, Chief Information Security Officer, ca IT Leaders Forum Working in the Cloud using the new ISO/IEC/ITU-T Cloud Computing Standards Dr David Ross, Chief Information Security Officer, Bridge Point Communications David_Ross@bridgepoint.com.au

More information

The standards landscape in cloud

The standards landscape in cloud The standards landscape in cloud PRESENTATION computing TITLE GOES HERE Vincent Franceschini CTO Distributed Architectures, Hitachi Data System Chairman Emeritus, SNIA Governing Board Member, SNIA Cloud

More information

Interna'onal Standards Ac'vi'es on Cloud Security EVA KUIPER, CISA CISSP EVA.KUIPER@HP.COM HP ENTERPRISE SECURITY SERVICES

Interna'onal Standards Ac'vi'es on Cloud Security EVA KUIPER, CISA CISSP EVA.KUIPER@HP.COM HP ENTERPRISE SECURITY SERVICES Interna'onal Standards Ac'vi'es on Cloud Security EVA KUIPER, CISA CISSP EVA.KUIPER@HP.COM HP ENTERPRISE SECURITY SERVICES Agenda Importance of Common Cloud Standards Outline current work undertaken Define

More information

ITU- T Focus Group Cloud Compu2ng

ITU- T Focus Group Cloud Compu2ng ITU- T Focus Group Cloud Compu2ng International Telecommunication Union 1 ITU-T FG Cloud Management & Structure Management team: Chairman: Victor Kutukov (Russia) Vice-Chairman: Jamil Chawki (France Telecom

More information

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY Eric A. Hibbard, CISSP, CISA, ISSAP, ISSMP, ISSEP, SCSE Hitachi Data Systems A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY Subhash Sankuratripati NetApp SNIA Legal Notice The material contained in

More information

Status Report on Storage Security Initiatives

Status Report on Storage Security Initiatives Status Report on Storage Security Initiatives Eric A. Hibbard, CISSP, CISA Sr. Director, Data Networking Technology Hitachi Data Systems Abstract This presentation will review the storage security initiatives

More information

Cloud standards: Ready for Prime Time. CloudWatch webinar: Standards ready for prime time (part 2) 1

Cloud standards: Ready for Prime Time. CloudWatch webinar: Standards ready for prime time (part 2) 1 Cloud standards: Ready for Prime Time CloudWatch webinar: Standards ready for prime time (part 2) 1 Agenda 15:00 Welcome and introduction 15:05 IEEE P2301: Guide for Cloud Portability and Interoperability

More information

2011 Cloud Security Alliance, Inc. All rights reserved.

2011 Cloud Security Alliance, Inc. All rights reserved. Vast Landscape of Cloud Standards Development Organizations (SDOs) 2 4 Mission Statement (Non-Profit) Promote common level of understanding Consumers Providers Security Requirements Attestation of Assurance

More information

The Sprawl of Cloud Services & Data Everywhere in an Enterprise

The Sprawl of Cloud Services & Data Everywhere in an Enterprise The Sprawl of Cloud Services & Data Everywhere in an Enterprise World Standards Day 2015 October 14 th Mazin Yousif, PhD Mount Tai, China WE CAN DIGITIZE ALMOST EVERYTHING. WE CAN CONNECT/ANALYZE EVERYTHING

More information

Maintaining Herd Communication - Standards Used In IT And Cyber Security. Laura Kuiper

Maintaining Herd Communication - Standards Used In IT And Cyber Security. Laura Kuiper Maintaining Herd Communication - Standards Used In IT And Cyber Security Laura Kuiper So what is Cyber Security? According to ITU-T X.1205 Cybersecurity is the collection of tools, policies, security concepts,

More information

ISO/IEC JTC 1 SC 38 Cloud Works & Issues

ISO/IEC JTC 1 SC 38 Cloud Works & Issues ISO/IEC JTC 1 SC 38 Cloud Works & Issues International Cloud Symposium 2011 10-13 October 2011, Ditton Manor, UK Dr. Seungyun Lee syl@etri.re.kr International Cloud Symposium 2011, 10-13 October 2011,

More information

White Paper on CLOUD COMPUTING

White Paper on CLOUD COMPUTING White Paper on CLOUD COMPUTING INDEX 1. Introduction 2. Features of Cloud Computing 3. Benefits of Cloud computing 4. Service models of Cloud Computing 5. Deployment models of Cloud Computing 6. Examples

More information

Standardising privacy and security for the cloud

Standardising privacy and security for the cloud Standardising privacy and security for the cloud Chris Mitchell Royal Holloway, University of London www.chrismitchell.net 1 Acknowledgements Like to thank organisers of event for inviting me to contribute.

More information

ISO/IEC JTC 1/SC 38 N 282

ISO/IEC JTC 1/SC 38 N 282 ISO/IEC JTC 1/SC 38 N 282 ISO/IEC JTC 1/SC 38 Distributed application platforms and services (DAPS) Secretariat: ANSI Document type: Request for comments Title: Draft Study Group on Cloud Computing Report

More information

Accelerating Cloud adoption with Security Level Agreements automation, monitoring and industry standards compliance

Accelerating Cloud adoption with Security Level Agreements automation, monitoring and industry standards compliance Accelerating Cloud adoption with Security Level Agreements automation, monitoring and industry standards compliance Cirrus Workshop, Vienna, Austria, November 19, 2013 Dr. Said Tabet Senior Technologist

More information

Comparative Analysis of SOA and Cloud Computing Architectures Using Fact Based Modeling

Comparative Analysis of SOA and Cloud Computing Architectures Using Fact Based Modeling Comparative Analysis of SOA and Cloud Computing Architectures Using Fact Based Modeling Baba Piprani 1, Don Sheppard 2, and Abbie Barbir 3 1 MetaGlobal Systems, Canada 2 ConCon Management Services, Canada

More information

CLOUD SERVICE LEVEL AGREEMENTS Meeting Customer and Provider needs

CLOUD SERVICE LEVEL AGREEMENTS Meeting Customer and Provider needs CLOUD SERVICE LEVEL AGREEMENTS Meeting Customer and Provider needs Eric Simmon January 28 th, 2014 BACKGROUND Federal Cloud Computing Strategy Efficiency improvements will shift resources towards higher-value

More information

Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab Qing.Liu@chi.frb.org

Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab Qing.Liu@chi.frb.org Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab Qing.Liu@chi.frb.org 1 Disclaimers This presentation provides education on Cloud Computing and its security

More information

Cloud Security Panel: Real World GRC Experiences. ISACA Atlanta s 2013 Annual Geek Week

Cloud Security Panel: Real World GRC Experiences. ISACA Atlanta s 2013 Annual Geek Week Cloud Security Panel: Real World GRC Experiences ISACA Atlanta s 2013 Annual Geek Week Agenda Introductions Recap: Overview of Cloud Computing and Why Auditors Should Care Reference Materials Panel/Questions

More information

This document is a preview generated by EVS

This document is a preview generated by EVS TECHNICAL REPORT ISO/IEC TR 20000-9 First edition 2015-02-15 Information technology Service management Part 9: Guidance on the application of ISO/IEC 20000-1 to cloud services Technologies de l information

More information

Part 2: ICT security standards and guidance documents

Part 2: ICT security standards and guidance documents Part 2: ICT security standards and guidance documents Version 3.0 April, 2007 Introduction The purpose of this part of the Security Standards Roadmap is to provide a summary of existing, approved ICT security

More information

Cloud Security Alliance and Standards. Jim Reavis Executive Director March 2012

Cloud Security Alliance and Standards. Jim Reavis Executive Director March 2012 Cloud Security Alliance and Standards Jim Reavis Executive Director March 2012 About the CSA Global, not for profit, 501(c)6 organization Over 32,000 individual members, 120 corporate members, 60 chapters

More information

Lecture 02b Cloud Computing II

Lecture 02b Cloud Computing II Mobile Cloud Computing Lecture 02b Cloud Computing II 吳 秀 陽 Shiow-yang Wu T. Sridhar. Cloud Computing A Primer, Part 2: Infrastructure and Implementation Topics. The Internet Protocol Journal, Volume 12,

More information

Information Security ISO Standards. Feb 11, 2015. Glen Bruce Director, Enterprise Risk Security & Privacy

Information Security ISO Standards. Feb 11, 2015. Glen Bruce Director, Enterprise Risk Security & Privacy Information Security ISO Standards Feb 11, 2015 Glen Bruce Director, Enterprise Risk Security & Privacy Agenda 1. Introduction Information security risks and requirements 2. Information Security Management

More information

Cloud Computing ISO Security and Privacy Standards: 27017, 27018, 27001 Mike Edwards (Chair UK Cloud Standards Committee)

Cloud Computing ISO Security and Privacy Standards: 27017, 27018, 27001 Mike Edwards (Chair UK Cloud Standards Committee) Cloud Computing ISO Security and Privacy Standards: 27017, 27018, 27001 Mike Edwards (Chair UK Cloud Standards Committee) Mike Edwards Senior Technical Staff Member, IBM Cloud Computing & SOA Standards,

More information

NIST Cloud Computing Security Reference Architecture (SP 500-299 draft)

NIST Cloud Computing Security Reference Architecture (SP 500-299 draft) NIST Cloud Computing Security Reference Architecture (SP 500-299 draft) NIST Cloud Computing Security Working Group Dr. Michaela Iorga, NIST Senior Security Technical Lead for Cloud Computing Chair, NIST

More information

Public Cloud Workshop Offerings

Public Cloud Workshop Offerings Cloud Perspectives a division of Woodward Systems Inc. Public Cloud Workshop Offerings Cloud Computing Measurement and Governance in the Cloud Duration: 1 Day Purpose: This workshop will benefit those

More information

ISO/IEC & ediscovery (ISO/IEC 27050) Eric A. Hibbard, CISSP-ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems

ISO/IEC & ediscovery (ISO/IEC 27050) Eric A. Hibbard, CISSP-ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems ISO/IEC & ediscovery (ISO/IEC 27050) Eric A. Hibbard, CISSP-ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems 1 Standardizing ediscovery ISO/IEC JTC 1/SC 27 Information technology Security

More information

Working Group on. First Working Group Meeting 29.5.2012

Working Group on. First Working Group Meeting 29.5.2012 Working Group on Cloud Security and Privacy (WGCSP) First Working Group Meeting 29.5.2012 1 Review of fexisting i Standards d and Best Practices on Cloud Security Security Standards and Status List of

More information

Global Efforts to Secure Cloud Computing

Global Efforts to Secure Cloud Computing April 2012 Global Efforts to Secure Cloud Computing Jim Reavis Executive Director Cloud: ushering in IT Spring Technology consumerization and its offspring Cloud: Compute as a utility Smart Mobility: Compute

More information

Cloud Standards Coordination Final Report November 2013 VERSION 1.0

Cloud Standards Coordination Final Report November 2013 VERSION 1.0 November 2013 VERSION 1.0 Executive Summary The European Commission Communication on the European Cloud strategy identifies a key action for standardisation in this context: Key action 1: Cutting through

More information

Cloud Standardization, Compliance and Certification. Class 2012 event 25.rd of October 2012 Dalibor Baskovc, CEO Zavod e-oblak

Cloud Standardization, Compliance and Certification. Class 2012 event 25.rd of October 2012 Dalibor Baskovc, CEO Zavod e-oblak Cloud Standardization, Compliance and Certification Class 2012 event 25.rd of October 2012 Dalibor Baskovc, CEO Zavod e-oblak Todays Agenda IT Resourcing with Cloud Computing and related challenges Landscape

More information

CLOUD COMPUTING OVERVIEW OF CLOUD COMPUTING PRINCIPLES AND TECHNOLOGIES

CLOUD COMPUTING OVERVIEW OF CLOUD COMPUTING PRINCIPLES AND TECHNOLOGIES CLOUD COMPUTING OVERVIEW OF CLOUD COMPUTING PRINCIPLES AND TECHNOLOGIES Peter R. Egli INDIGOO.COM 1/31 Contents 1. What is cloud computing? 2. Why cloud computing? 3. Typical IaaS, PaaS, SaaS providers

More information

US Government Driven Cloud. A panel discussion including: DMTF, Cloud Security Alliance, NIST and SNIA

US Government Driven Cloud. A panel discussion including: DMTF, Cloud Security Alliance, NIST and SNIA US Government Driven Cloud Computing Standards A panel discussion including: DMTF, Cloud Security Alliance, NIST and SNIA Lee Badger: Computer Scientist, Computer Security Division, National Institute

More information

Standardised SLAs: how far can we go? DIHC, Euro-Par 2013, Aachan John Kennedy Intel Labs Europe

Standardised SLAs: how far can we go? DIHC, Euro-Par 2013, Aachan John Kennedy Intel Labs Europe Standardised SLAs: how far can we go? DIHC, Euro-Par 2013, Aachan John Kennedy Intel Labs Europe Before we begin AMD AT&T Microelectronics Digital Equipment Harris Semiconductor Hewlett-Packard IBM Intel

More information

Copyright 2010 NTT DATA AgileNet L.L.C. 12/06/2010 NTT DATA Agilenet L.L.C. Kenji Motohashi

Copyright 2010 NTT DATA AgileNet L.L.C. 12/06/2010 NTT DATA Agilenet L.L.C. Kenji Motohashi Global Inter-Cloud Technology Forum (GICTF) 12/06/2010 NTT DATA Agilenet L.L.C. Kenji Motohashi Agenda 1. What is the GICTF 2. GICTF s Past Cloud Activities 3. GICTF's Current and Future Cloud Plans 4.

More information

Why Cloud Standards Matter

Why Cloud Standards Matter Storm in the Cloud - the OASIS weather report Why Cloud Standards Matter You Fang, Huawei, OASIS Board of Directors 1 5000 多 名 专 家 参 与, 来 自 600 家 公 司, 政 府 和 个 人 OASIS Open is a global standards organization

More information

Preface Introduction

Preface Introduction Preface Introduction Cloud computing is revolutionizing all aspects of technologies to provide scalability, flexibility and cost-effectiveness. It has become a challenge to ensure the security of cloud

More information

Interoperability & Portability for Cloud Computing: A Guide. http://www.cloud-council.org/cscc-cloud-interoperability-and-portability.

Interoperability & Portability for Cloud Computing: A Guide. http://www.cloud-council.org/cscc-cloud-interoperability-and-portability. Interoperability & Portability for Computing: A Guide http://www.cloud-council.org/cscc--interoperability-and-portability.pdf December, 2014 The Standards Customer Council THE Customer s Voice for Standards!

More information

Working Group 5 Identity Management and Privacy Technologies within ISO/IEC JTC 1/SC 27 IT Security Techniques

Working Group 5 Identity Management and Privacy Technologies within ISO/IEC JTC 1/SC 27 IT Security Techniques Working Group 5 Identity Management and Privacy Technologies within ISO/IEC JTC 1/SC 27 IT Security Techniques Joint Workshop of ISO/IEC JTC 1/SC 27/WG 5, ITU-T SG17/Q.6, and FIDIS on Identity Management

More information

ELECTRONIC DISCOVERY STANDARDIZATION

ELECTRONIC DISCOVERY STANDARDIZATION Copyright 2014 Ave Maria Law Review ELECTRONIC DISCOVERY STANDARDIZATION Eric Hibbard INTRODUCTION After a somewhat rocky start, the International Organization for Standardization (ISO), in conjunction

More information

The role of standards in driving cloud computing adoption

The role of standards in driving cloud computing adoption The role of standards in driving cloud computing adoption The emerging era of cloud computing The world of computing is undergoing a radical shift, from a product focus to a service orientation, as companies

More information

Cloud Computing and Standards

Cloud Computing and Standards Cloud Computing and Standards Heather Kreger CTO International Standards, IBM kreger@us.ibm.com 2012 IBM Corporation Technology will play the key role in success Speed Value 90% 1 view cloud as critical

More information

Security Issues in Cloud Computing

Security Issues in Cloud Computing Security Issues in Computing CSCI 454/554 Computing w Definition based on NIST: A model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources

More information

Navigating Cloud Standards

Navigating Cloud Standards Navigating Cloud Standards David Bicket Director m-assure Limited dpb@19770.org Acknowledgements: Kate Craig-Wood, Memset Ian Osborne, Intellect, ICT KTN, CIF Standards Chairman Learning objectives What

More information

Cloud Security Standards. Aziza Al Rashdi Director, Cyber Security Professional Services Oman National CERT Information Technology Authority

Cloud Security Standards. Aziza Al Rashdi Director, Cyber Security Professional Services Oman National CERT Information Technology Authority Cloud Security Standards Aziza Al Rashdi Director, Cyber Security Professional Services Oman National CERT Information Technology Authority Introduction Sign Off December 2012 Information Technology Authority

More information

An Overview of the Most Important Reference Architectures for Cloud Computing

An Overview of the Most Important Reference Architectures for Cloud Computing 26 Informatica Economică vol. 18, no. 4/2014 An Overview of the Most Important Reference Architectures for Cloud Computing Răzvan ZOTA, Ionuț Alexandru PETRE The Bucharest University of Economic Studies

More information

ISO/IEC JTC 1/WG 10 Working Group on Internet of Things. Sangkeun YOO, Convenor

ISO/IEC JTC 1/WG 10 Working Group on Internet of Things. Sangkeun YOO, Convenor ISO/IEC JTC 1/WG 10 Working Group on Internet of Things Sangkeun YOO, Convenor History ISO/IEC JTC 1/SWG 5 (2013 ~ ) In JTC 1 Plenary 2014, Special Working on IoT (SWG 5) proposed to establish a subcommittee

More information

Cloud Infrastructure Planning. Chapter Six

Cloud Infrastructure Planning. Chapter Six Cloud Infrastructure Planning Chapter Six Topics Key to successful cloud service adoption is an understanding of underlying infrastructure. Topics Understanding cloud networks Leveraging automation and

More information

Clinical Trials in the Cloud: A New Paradigm?

Clinical Trials in the Cloud: A New Paradigm? Marc Desgrousilliers CTO at Clinovo Clinical Trials in the Cloud: A New Paradigm? Marc Desgrousilliers CTO at Clinovo What is a Cloud? (1 of 3) "Cloud computing is a model for enabling convenient, on-demand

More information

Security in the Green Cloud

Security in the Green Cloud Security in the Green Cloud Smart and Green infrastructure symposium 2011 Prague May 19 th 2011 Steinthor Bjarnason sbjarnas@cisco.com 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public

More information

Pilvipalveluiden tietoturvan standardisointi

Pilvipalveluiden tietoturvan standardisointi Pilvipalveluiden tietoturvan standardisointi Juha Röning Juha.Roning@oulu.fi Sisältö Standardien kirjo Pilvipalveluiden standardit Seurattavat standardit Standardit ja CSA Cloud Controls Matriisi Cloud

More information

Cloud Security Introduction and Overview

Cloud Security Introduction and Overview Introduction and Overview Klaus Gribi Senior Security Consultant klaus.gribi@swisscom.com May 6, 2015 Agenda 2 1. Cloud Security Cloud Evolution, Service and Deployment models Overview and the Notorious

More information

Wayne M. Adams Board of Directors, Chairman Mark Carlson SNIA Cloud TWG Chair and Technical Council Member

Wayne M. Adams Board of Directors, Chairman Mark Carlson SNIA Cloud TWG Chair and Technical Council Member SNIA PRESENTATION and Data Storage TITLE Cloud GOES Computing HERE Wayne M. Adams Board of Directors, Chairman Mark Carlson SNIA Cloud TWG Chair and Technical Council Member SNIA copyright 2011 www.snia.org

More information

Cloud Storage Security with a Focus on CDMI. Eric A. Hibbard, CISSP, CISA, ISSAP, ISSMP, ISSEP, SCSE Hitachi Data Systems

Cloud Storage Security with a Focus on CDMI. Eric A. Hibbard, CISSP, CISA, ISSAP, ISSMP, ISSEP, SCSE Hitachi Data Systems Cloud Storage Security with a Focus on CDMI Eric A. Hibbard, CISSP, CISA, ISSAP, ISSMP, ISSEP, SCSE Hitachi Data Systems SNIA Legal Notice The material contained in this tutorial is copyrighted by the

More information

Cloud up to business processes

Cloud up to business processes Chris Francis IBM Technical Relations and Regulatory Affairs Cloud up to business processes Chris Francis Existing state of play Conventional solutions Software as a Service Platform as a Service Infrastructure

More information

ISO/IEC JTC1 SC32. Next Generation Analytics Study Group

ISO/IEC JTC1 SC32. Next Generation Analytics Study Group November 13, 2013 ISO/IEC JTC1 SC32 Next Generation Analytics Study Group Title: Author: Project: Status: Big Data Efforts Keith W. Hare Discussion Paper References: 1/6 1 NIST Big Data Public Working

More information

Cloud Security considerations for business adoption. Ricci IEONG CSA-HK&M Chapter

Cloud Security considerations for business adoption. Ricci IEONG CSA-HK&M Chapter Cloud Security considerations for business adoption Ricci IEONG CSA-HK&M Chapter What is Cloud Computing? Slide 2 What is Cloud Computing? My Cloud @ Internet Pogoplug What is Cloud Computing? Compute

More information

Global Efforts to Secure Cloud Computing. Jason Witty President, Cloud Security Alliance Chicago

Global Efforts to Secure Cloud Computing. Jason Witty President, Cloud Security Alliance Chicago Global Efforts to Secure Cloud Computing Jason Witty President, Cloud Security Alliance Chicago Cloud: Ushering in IT Spring Technology consumerization and its offspring Cloud: Compute as a utility Smart

More information

Accelerate Your Enterprise Private Cloud Initiative

Accelerate Your Enterprise Private Cloud Initiative Cisco Cloud Comprehensive, enterprise cloud enablement services help you realize a secure, agile, and highly automated infrastructure-as-a-service (IaaS) environment for cost-effective, rapid IT service

More information

ISO/IEC JTC 1/SC 27 N15445

ISO/IEC JTC 1/SC 27 N15445 ISO/IEC JTC 1/SC 27 N15445 REPLACES: N14360 ISO/IEC JTC 1/SC 27 Information technology -- Security techniques Secretariat: DIN, Germany DOC TYPE: Business Plan TITLE: SC 27 Business Plan October 2015 September

More information

Big Data Systems and Interoperability

Big Data Systems and Interoperability Big Data Systems and Interoperability Emerging Standards for Systems Engineering David Boyd VP, Data Solutions Email: dboyd@incadencecorp.com Topics Shameless plugs and denials What is Big Data and Why

More information

ISO/IEC Information & ICT Security and Governance Standards in practice. Charles Provencher, Nurun Inc; Chair CAC-SC27 & CAC-CGIT

ISO/IEC Information & ICT Security and Governance Standards in practice. Charles Provencher, Nurun Inc; Chair CAC-SC27 & CAC-CGIT ISO/IEC Information & ICT Security and Governance Standards in practice Charles Provencher, Nurun Inc; Chair CAC-SC27 & CAC-CGIT June 4, 2009 ISO and IEC ISO (the International Organization for Standardization)

More information

OWASP Chapter Meeting June 2010. Presented by: Brayton Rider, SecureState Chief Architect

OWASP Chapter Meeting June 2010. Presented by: Brayton Rider, SecureState Chief Architect OWASP Chapter Meeting June 2010 Presented by: Brayton Rider, SecureState Chief Architect Agenda What is Cloud Computing? Cloud Service Models Cloud Deployment Models Cloud Computing Security Security Cloud

More information

NIST Cloud Computing Program

NIST Cloud Computing Program NIST Program USG Roadmap Top 10 high priority requirements to accelerate USG adoption of the model NIST Mission: To promote U.S. innovation and industrial competitiveness by advancing measurement science,

More information

Cloud Computing Security. Belmont Chia Data Center Solutions Architect

Cloud Computing Security. Belmont Chia Data Center Solutions Architect Cloud Computing Security Belmont Chia Data Center Solutions Architect 1 Cloud Computing Security What is this Cloud stuff? Security in Public Clouds Security in Private Clouds 2 Defining Cloud Computing

More information

A Comprehensive Study on Cloud Computing Standardization

A Comprehensive Study on Cloud Computing Standardization A Comprehensive Study on Cloud Computing Standardization Dr. Mukesh Chandra Negi Project Manager, Tech Mahindra Ltd, Noida, India ABSTRACT: Standard is a trust between standardization body, buyers and

More information

Logical Data Models for Cloud Computing Architectures

Logical Data Models for Cloud Computing Architectures Logical Data Models for Cloud Computing Architectures Augustine (Gus) Samba, Kent State University Describing generic logical data models for two existing cloud computing architectures, the author helps

More information

SECURITY IN SERVICE LEVEL AGREEMENTS FOR CLOUD COMPUTING

SECURITY IN SERVICE LEVEL AGREEMENTS FOR CLOUD COMPUTING SECURITY IN SERVICE LEVEL AGREEMENTS FOR CLOUD COMPUTING Karin Bernsmed, Martin Gilje Jaatun SINTEF Information and Communication Technology, Trondheim, Norway Karin.Bernsmed@sintef.no, Martin.G.Jaatun@sintef.no

More information

NFV Forum Progression to Launch

NFV Forum Progression to Launch NFV Forum Progression to Launch Laurent Laporte Technology Development Strategist Sprint September 25, 2014 Progression to NFV Forum Launch TOPS Council SDN/NFV Focus Group: NFV Landscape Assessment completed,

More information

Entschuldigen Sie mich, I did not understand, parlez-vous IT Методы обеспечения защиты?

Entschuldigen Sie mich, I did not understand, parlez-vous IT Методы обеспечения защиты? Entschuldigen Sie mich, I did not understand, parlez-vous IT Методы обеспечения защиты? World Standards Day 2015 ILNAS 2015-10-14 Cédric Mauny, Vice-Chairman of Luxembourg National Committee ISO/IEC JTC1

More information

Standard Big Data Architecture and Infrastructure

Standard Big Data Architecture and Infrastructure Standard Big Data Architecture and Infrastructure Wo Chang Digital Data Advisor Information Technology Laboratory (ITL) National Institute of Standards and Technology (NIST) wchang@nist.gov May 20, 2016

More information

IT Security Risk Management Model for Cloud Computing: A Need for a New Escalation Approach.

IT Security Risk Management Model for Cloud Computing: A Need for a New Escalation Approach. IT Security Risk Management Model for Cloud Computing: A Need for a New Escalation Approach. Gunnar Wahlgren 1, Stewart Kowalski 2 Stockholm University 1: (wahlgren@dsv.su.se), 2: (stewart@dsv.su.se) ABSTRACT

More information

Standardization for Security of Cloud Computing

Standardization for Security of Cloud Computing Standardization for Security of Cloud Computing - with Focus on Availability - Thu, 28 February, 2013 Ben T. Katsumi Chief Researcher, Security Economics Laboratory IT Security Center, IPA, Japan Agenda

More information

The Open Group 2011. Cloud Work Group

The Open Group 2011. Cloud Work Group The Open Group Cloud Work Group 18 May 2011 Heather Kreger SOA WG co-chair Liaison for SOA, Cloud IBM Cornwallis Rd B062, M307 Research Triangle Park, NC Tel 919-496-9572 Kreger@us.ibm.com www.opengroup.org

More information

Trusted Inter-Cloud Challenges

Trusted Inter-Cloud Challenges ITU Workshop on Future Trust and Knowledge Infrastructure, Phase 2 Geneva, Switzerland 1 July 2016 Trusted Inter-Cloud Challenges Dr Emil Kowalczyk Orange Polska, Emil.Kowalczyk@orange.com Motivation Inter-cloud

More information

ISO/IEC 20000-2 INTERNATIONAL STANDARD. Information technology Service management Part 2: Guidance on the application of service management systems

ISO/IEC 20000-2 INTERNATIONAL STANDARD. Information technology Service management Part 2: Guidance on the application of service management systems INTERNATIONAL STANDARD ISO/IEC 20000-2 Second edition 2012-02-15 Information technology Service management Part 2: Guidance on the application of service management systems Technologies de l'information

More information

Walter Fumy discusses the importance of IT security standards in today s world and the role that SC 27 plays in this field.

Walter Fumy discusses the importance of IT security standards in today s world and the role that SC 27 plays in this field. 27, IT Security Techniques An Interview with Walter Fumy, Chairman of ISO/IEC JTC 1/SC Walter Fumy discusses the importance of IT security standards in today s world and the role that SC 27 plays in this

More information

Future of Cloud Computing. Irena Bojanova, Ph.D. UMUC, NIST

Future of Cloud Computing. Irena Bojanova, Ph.D. UMUC, NIST Future of Cloud Computing Irena Bojanova, Ph.D. UMUC, NIST No Longer On The Horizon Essential Characteristics On-demand Self-Service Broad Network Access Resource Pooling Rapid Elasticity Measured Service

More information

Overview of Cloud Computing (ENCS 691K Chapter 1)

Overview of Cloud Computing (ENCS 691K Chapter 1) Overview of Cloud Computing (ENCS 691K Chapter 1) Roch Glitho, PhD Associate Professor and Canada Research Chair My URL - http://users.encs.concordia.ca/~glitho/ Overview of Cloud Computing Towards a definition

More information

IEEE Cloud Activities

IEEE Cloud Activities IEEE Cloud Activities IEEE Cloud Initiative IEEE P2301 IEEE P2302 IEEE Big Data Initiative David Bernstein David.Bernstein@ieee.org IEEE Cloud Initiative, IEEE P2300 co-founder 1 IEEE Cloud Computing Community

More information

Auditing Cloud Computing. A Security and Privacy Guide. Wiley Corporate F&A

Auditing Cloud Computing. A Security and Privacy Guide. Wiley Corporate F&A Brochure More information from http://www.researchandmarkets.com/reports/2213812/ Auditing Cloud Computing. A Security and Privacy Guide. Wiley Corporate F&A Description: The auditor's guide to ensuring

More information

Cloud Computing A NIST Perspective & Beyond. Robert Bohn, PhD Advanced Network Technologies Division

Cloud Computing A NIST Perspective & Beyond. Robert Bohn, PhD Advanced Network Technologies Division Cloud Computing A NIST Perspective & Beyond Robert Bohn, PhD Advanced Network Technologies Division ISACA National Capital Area Chapter Arlington, VA, USA 17 March 2015 Cloud Program Overview Launch &

More information

Informationsteknologi Cloudcomputing Oversigt og ordliste

Informationsteknologi Cloudcomputing Oversigt og ordliste Dansk standard DS/ISO/IEC 17788 1. udgave 2014-10-21 Informationsteknologi Cloudcomputing Oversigt og ordliste Information technology Cloud computing Overview and vocabulary DS/ISO/IEC 17788 København

More information

Identity Management Initiatives in identity management and emerging standards Presented to Fondazione Ugo Bordoni Rome, Italy

Identity Management Initiatives in identity management and emerging standards Presented to Fondazione Ugo Bordoni Rome, Italy Identity Management Initiatives in identity management and emerging standards Presented to Fondazione Ugo Bordoni Rome, Italy November 18, 2008 Teresa Schwarzhoff Computer Security Division Information

More information

Cloud Security & Standardization. Markku Siltanen Tietoturvakonsultti CISA, CGEIT, CRISC

Cloud Security & Standardization. Markku Siltanen Tietoturvakonsultti CISA, CGEIT, CRISC 0 Copyright 2011 FUJITSU Cloud Security & Standardization Markku Siltanen Tietoturvakonsultti CISA, CGEIT, CRISC Cloud computing 1 Copyright 2011 FUJITSU Characteristics of cloud 2 Copyright 2011 FUJITSU

More information

When Security, Privacy and Forensics Meet in the Cloud

When Security, Privacy and Forensics Meet in the Cloud When Security, Privacy and Forensics Meet in the Cloud Dr. Michaela Iorga, Senior Security Technical Lead for Cloud Computing Co-Chair, Cloud Security WG Co-Chair, Cloud Forensics Science WG March 26,

More information

An Analysis of Cloud Interoperability Standards onvarious Service Models

An Analysis of Cloud Interoperability Standards onvarious Service Models An Analysis of Cloud Interoperability Standards onvarious Service Models SuchethaVijayakumar 1, LenitaVelezaSerrao 2, Hancel Anacletus D Souza 3 Assistant Professor, Department of IT, AIMIT, St Aloysius

More information

INTERNATIONAL TELECOMMUNICATION UNION

INTERNATIONAL TELECOMMUNICATION UNION INTERNATIONAL TELECOMMUNICATION UNION TELECOMMUNICATION STANDARDIZATION SECTOR STUDY PERIOD 2009-2012 English only Original: English Question(s): 4/17 Geneva, 11-20 February 2009 Ref. : TD 0244 Rev.2 Source:

More information