Cloud Computing Frameworks and Standards news, help and research

Cloud Computing Frameworks and Standards News

April 12, 2017 12 Apr'17
Symantec CA woes debated by browser community

Compliance with CA/B Forum Baseline Requirements was debated after Symantec CA posted responses to 14 issues raised by Mozilla developers.
October 21, 2016 21 Oct'16
EU-U.S. Privacy Shield certification process picks up steam, slowly

After a slow start, some U.S. companies are starting to address the questions and challenges of EU-U.S. Privacy Shield certification. But most haven't started the process.
February 03, 2016 03 Feb'16
Privacy Shield to replace Safe Harbor framework

The EU and U.S. agree on Privacy Shield as the replacement for the Safe Harbor framework for transatlantic data flows, though questions remain over privacy protection details.
January 28, 2016 28 Jan'16
Industry group says FedRAMP certification process is 'broken'

An advocacy group representing cloud providers such as Hewlett Packard Enterprise and IBM has criticized FedRAMP and called on the government to fix the cloud certification program.

Bring yourself up to speed with our introductory content

software-defined perimeter (SDP)

The software-defined perimeter, or SDP, is a security framework that controls access to resources based on identity. Continue Reading
How to design and implement a cloud governance framework

An organization that wants to control its cloud environment should look closely at how well it adheres to these four key pillars of cloud governance. Continue Reading
How to prepare for a zero-trust model in the cloud

Zero-trust security in the cloud is different than it is on premises. Learn the concepts and policies to effectively achieve a zero-trust model in the cloud. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

How to use the Mitre ATT&CK framework for cloud security

Learn how to use the Mitre ATT&CK security framework to keep your enterprise cloud environment -- whether AWS, GCP, Azure, Azure AD or Microsoft 365 -- secure. Continue Reading
SASE market emerges as the 'wave of the future'

Secure Access Service Edge is the latest technology to garner industry buzz in networking and security. Although it's still relatively new, the technology is making waves. Continue Reading
Istio service mesh security benefits microservices, developers

Learn more about Istio service mesh security features and how the open source technology can enable developers to better run, control and secure a distributed microservices architecture. Continue Reading

Learn to apply best practices and optimize your operations.

The 8 best cloud security certifications for IT pros in 2020

Certifications can help security pros prove their baseline knowledge of infosec topics. Consider adding these top cloud security certifications to your arsenal. Continue Reading
VMs vs. containers: Which is better for security?

Security professionals make technology decisions every day. Learn about the important security properties of VMs vs. containers and how they affect an organization's security posture. Continue Reading
How shared cloud security assessments can benefit enterprises

Ensuring cloud security is a constant problem that shared cloud security assessments are trying to address. Learn about the benefits of sharing assessments with Nick Lewis. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How to address and mitigate serverless security issues

There are two major security implications of serverless cloud infrastructure: secure coding and identity and access management. Uncover best practices to mitigate these risks. Continue Reading
Shared responsibility model transparency boosts cloud security

The shared responsibility model delineates where company and CSP security responsibilities start and end. This is critical not only for compliance, but also the big security picture. Continue Reading
How enterprises should handle GDPR compliance in the cloud

GDPR compliance in the cloud can be an intimidating concept for some enterprises, but it doesn't have to be. Rob Shapland explains why it's not so different from on premises. Continue Reading