Available:*
Library | Item Barcode | Call Number | Material Type | Item Category 1 | Status |
|---|---|---|---|---|---|
Searching... | 30000010344208 | QA76.585 S26 2015 | Open Access Book | Book | Searching... |
On Order
Summary
Summary
CSA Guide to Cloud Computing brings you the most current and comprehensive understanding of cloud security issues and deployment techniques from industry thought leaders at the Cloud Security Alliance (CSA).
For many years the CSA has been at the forefront of research and analysis into the most pressing security and privacy related issues associated with cloud computing. CSA Guide to Cloud Computing provides you with a one-stop source for industry-leading content, as well as a roadmap into the future considerations that the cloud presents.
The authors of CSA Guide to Cloud Computing provide a wealth of industry expertise you won't find anywhere else. Author Raj Samani is the Chief Technical Officer for McAfee EMEA; author Jim Reavis is the Executive Director of CSA; and author Brian Honan is recognized as an industry leader in the ISO27001 standard. They will walk you through everything you need to understand to implement a secure cloud computing structure for your enterprise or organization.
Author Notes
Raj Samani, EMEA CTO McAfee part of Intel Security Brian Honan (CISM, CRISC, CCEIT), CEO BH Consulting.
Jim Reals, Co-founder and Chief Executive Officer for the Cloud Security Alliance.
Table of Contents
| Forewords | p. vii |
| About the Authors | p. xi |
| About the Cloud Security Alliance | p. xiii |
| Acknowledgments | p. xv |
| CSA Guide to Cloud Computing-Introduction | p. xvii |
| Chapter 1 Cloud Computing, What is it and What's the Big Deal? | p. 1 |
| Defining Cloud Computing | p. 2 |
| Economic Opportunities for Cloud Computing | p. 9 |
| The Cloud Is "Not" Secure | p. 19 |
| End Notes | p. 20 |
| Chapter 2 Selecting and Engaging with a Cloud Service Provider | p. 23 |
| Security, Trust and Assurance Repository Initiative | p. 25 |
| Engaging with the Cloud Service Provider | p. 29 |
| End Notes | p. 33 |
| Chapter 3 The Cloud Threat Landscape | p. 35 |
| The Cloud Threat Landscape | p. 36 |
| Notorious Nine | p. 39 |
| Additional Cloud Threats | p. 58 |
| End Notes | p. 59 |
| Chapter 4 Secure Cloud for Mobile Computing | p. 63 |
| Mobile Top Threats: Evil 8.0 | p. 64 |
| Addressing the Threat; Mobile Components for Consideration | p. 76 |
| End Notes | p. 82 |
| Chapter 5 Making the Move into the Cloud | p. 85 |
| Cloud Computing Checklist | p. 87 |
| Security for the Cloud | p. 95 |
| End Notes | p. 115 |
| Chapter 6 Certification for Cloud Service Providers | p. 117 |
| Certification for Cloud Service Providers | p. 117 |
| End Notes | p. 135 |
| Chapter 7 The Privacy Imperative | p. 137 |
| Does Cloud Computing Make My Data Any Less Private? | p. 137 |
| Privacy Level Agreement | p. 140 |
| Data Protection Certification | p. 146 |
| End Notes | p. 148 |
| Chapter 8 Cloud Security Alliance Research | p. 149 |
| Big Data Working Group | p. 150 |
| Cloud Data Governance | p. 156 |
| CloudCERT | p. 158 |
| CloudTrust Protocol | p. 158 |
| Enterprise Architecture Working Group | p. 161 |
| Incident Management and Forensics | p. 161 |
| Innovation Initiative | p. 162 |
| Security as a Service | p. 162 |
| Security Guidance for Critical Areas of Focus in Cloud Computing | p. 165 |
| Software Defined Perimeter | p. 166 |
| End Notes | p. 168 |
| Chapter 9 Dark Clouds, What to Do In The Event of a Security Incident | p. 171 |
| Building a Security Incident Response Team | p. 172 |
| Incident Response Challenges in the Cloud | p. 176 |
| The Future | p. 189 |
| End Notes | p. 190 |
| Chapter 10 The Future Cloud | p. 191 |
| More, More, and More | p. 191 |
| Cloud Computing for Critical Infrastructure | p. 193 |
| Defining the Security Requirements for Tomorrow's Cloud | p. 197 |
| End Notes | p. 207 |
| Appendix | p. 209 |
| Index | p. 213 |
