Bruce Schneier on security for cloud computing

Home
Topics
Cloud Computing Compliance, Audit and Data Governance
Cloud Computing Security Issues: Incident Response - Data Breach Prevention
Bruce Schneier on security for cloud computing

Bruce Schneier on security for cloud computing

Bruce Schneier on security for cloud computing

Date: Apr 09, 2010

In part one of this interview with Bruce Schneier, he discusses the impending shift in how security will be delivered. Schneier expects security to be embedded in Web-based services and sold directly to service providers, rather than to enterprises and end users. This is a radical transformation for the security industry that security professionals must prepare for. Schneier also discusses consumerization and how traditional security technologies and services must adjust as more untrusted devices connect to trusted networks.

Watch part two of this interview: Bruce Schneier on cryptography and U.S. government infosec

More on Cloud Computing Security Issues: Incident Response - Data Breach Prevention

Jim Lewis on cloud computing security issues
VIDEO - In this video, Jim Lewis, Director and Senior Fellow at the Center for Strategic and International Studies, gives his views on the security impact of cloud computing.
Cloud outages and cloud computing breaches: Lessons learned
Tip - Recent incidents illustrate the need for redundancy and provider security reviews
Cloud computing risk management: Assessing key risks of cloud computing
News - This guide discusses cloud computing risk management; how to prepare for cloud outages, conduct a cloud risk assessment, and evaluate cloud providers.
( Nov 22, 2011 | SearchCloudSecurity.com )
Coviello talks about building a trusted cloud, resilient security
News - Security needs to change in order to defend against targeted attacks, RSA chairman says.
( Nov 16, 2011 )
Researchers uncover AWS security vulnerabilities
News - Amazon says vulnerabilities were fixed and no customers were affected.
( Oct 27, 2011 )
Planning for cloud e-discovery: functions and procedures
Tip - Companies need to plan ahead for how they will gather evidence in the cloud.

More from Related TechTarget Sites

Security
Security Channel
Security UK
Cloud computing
Server Virtualization
VMware

Security
- Marty Roesch pushes collective analysis, underscores cyberthreat intelligence
  
  Sourcefire CTO Marty Roesch introduced cloud-based analysis for threat intelligence gathering. Network security monitoring platforms like RSA NetWitness may be headed in a similar direction.
- Longstanding security problems plague enterprises, Trustwave finds
  
  While organizations focus on mobile security and other emerging threats, an analysis of more than 2,000 penetration tests conducted by Trustwave found older threats often overlooked.
- Adobe issues support for Flash Player sandboxing in Firefox
  
  Adobe has launched the pubic beta of a new Flash Player sandbox feature for Firefox users, making attacks more difficult for cybercriminals.
Security Channel
- Survey results: VARs report customers’ IT spending 2012 expectations
  
  VARs expect customers to increase spending on security more than any other IT area in 2012. See which security segments will grow the most.
- Create a computer security blog to attract and retain customers
  
  Blogging can produce new leads for security solution providers. Focus on content in your computer security blog that connects with customers.
- Penetration testing tutorial: Guidance for effective pen tests
  
  This penetration testing tutorial contains essential tips to help solution providers uncover vulnerabilities in clients’ networks.
Security UK
- Web application vulnerability statistics show security losing ground
  
  New Web application vulnerability statistics show the number of vulnerabilities is rising, despite the use of Web application development frameworks.
- Microsoft spurs Browsium to rewrite tool for running IE6 on Windows 7
  
  Microsoft has spurred Browsium to rewrite its tool for running IE6 on Windows 7, limiting the security threat posed by continued use of IE6.
- How to apply PCI DSS guidance to virtualisation technology
  
  Learn how to apply best practices from the recently released PCI DSS virtualisation guidance to your virtual environment.
Cloud computing
- Digging deeper into IBM SmartCloud for private clouds
  
  IBM SmartCloud services give enterprises some options to build private and hybrid clouds and may give IBM a chance to improve its lagging cloud image.
- Hybrid cloud management tools and strategies
  
  Determining how to manage hybrid clouds can seem daunting. The trick is to identify what you need to manage and the best types of tools for the job.
- Six principles of HP Cloud Services
  
  Lining up cloud platforms from major vendors can cause vertigo. What’s the difference among private cloud products? Take a look at HP Cloud Services.
Server Virtualization
- Shedding light on Hyper-V 3.0 resource monitoring
  
  Hyper-V 3.0 will feature new resource-monitoring capabilities, which will be a boon for multi-tenant environments that need to calculate chargeback.
- VCP 5 certification course deadline looms over VMware pros
  
  VMware pros, who are under pressure to complete their VCP 5 exam before Feb. 29 to avoid additional requirements, yearn for Microsoft-style exams.
- PVLANs in Hyper-V 3.0: Network isolation without the headaches
  
  Microsoft Hyper-V 3.0 will introduce PVLANs, a new feature that uses IP address virtualization to solve the network isolation shortcomings of VLANs.
VMware
- Using VMware Fusion for Mac to get more from your Windows VM
  
  VMware Fusion for Mac is a boon for IT pros that work with various OSes. VMware Fusion 4, in particular, can create snapshots and allow a Windows VM to use built-in Mac devices.
- VMware ESXi security FAQ: Guarding the hypervisor, hosts and more
  
  As the sole hypervisor of vSphere 5, you need to know the ins and outs of VMware ESXi, especially when it comes to securing the hypervisor and ESXi hosts.
- Storing VMware ESXi syslog events on a remote Linux server
  
  Designating a remote Linux server to record VMware ESXi syslog events allows you to access that important information, even if the ESXi host crashes.

All Rights Reserved, Copyright 2011 - 2012, TechTarget