Cloud computing provides organizations with an alternative way of obtaining IT services and offers many benefits including increased flexibility as well as cost reduction. However many organizations are reluctant to adopt the cloud because of concerns over information security and a loss of control over the way IT service is delivered.
The Cloud Security Alliance (CSA) today unveiled the third version of its Security Guidance for Critical Areas of Focus in Cloud Computing. This effort provides a practical, actionable road map to managers wanting to adopt the cloud paradigm safely and securely.
Key updates in version three include:
Everybody knows that the cloud -- in particular, the security of cloud deployments -- is a huge pain point industry-wide. And as is the case with any new endeavor with such broad-sweeping impact, there's no shortage of well-meaning advice about how to secure it.
McAfee has turned to its parent company Intel to boost authentication and other features within McAfee's Cloud Security Platform, released in May.
Microsoft has integrated RSA's SecurID multiple authentication technology with Active Directory Federation Services, which lets companies extend identity data from the directory service to the cloud.
While ADFS provides user name and password services, RSA's technology goes several steps further by adding another layer of user authentication by way of a hardware or software token that generates an identifying code every 60 seconds.