The National Institute of Standards and Technology Wednesday issued two drafts on cloud computing, including the first set of guidelines for managing security and privacy in the cloud and another on cloud computing definitions. NIST issued new virtualization guidance, as well.
Special Publication 800-144 (Draft): Guidelines on Security and Privacy in Public Cloud provides an overview of the security and privacy challenges for public cloud computing and presents recommendations that organizations should consider when outsourcing data, applications and infrastructure to a public cloud environment. Safeguarding data in the public cloud isn't much different from other types of IT security. "It's the same advice we give for almost any deployment of IT because it is still the right thing to do," says NIST Senior Computer Scientist Tim Grance, who coauthored SP 800-144. "Take out the word 'cloud computing' and put in any major technology. You always want to carefully plan for security and privacy before you do those things rather than after you do them." For more information on this: http://www.govinfosecurity.com/articles.php?art_id=3321 Regards Sandeep Thakur -- You received this message because you are subscribed to the Google Groups "nforceit" group. To post to this group, send an email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/nforceit?hl=en-GB.
