Professional Documents
Culture Documents
PRESENTED BY
09/03/2011
09/03/2011
INTRODUCTION
Organizations are Increasingly turning to cloud computing. Analysts put the size of this market at
.
09/03/2011
09/03/2011
The cloud isnt inherently more or less secure than an organizations existing environment, but its different particularly in its dependence on THIRD PARTIES.
09/03/2011
Requires
Enterprises
using several cloud-based service providers, must Manage issues across multiple operators, each with different infrastructures, operational policies, and security skills.
Trusted front door to cloud 7
09/03/2011
09/03/2011
trusted front door is a security and trust brokering service that can encourage administrators, employees, and business partners to adopt cloudbased applications and processes by offering a single, convenient point of entry to multiple cloud services
09/03/2011
In
choosing trusted front door providers, organizations should evaluate how well they address the 4 key issues
1.
Assurance
2.Governance
3.Control 4.Reliable Performance
09/03/2011 Trusted front door to cloud 10
09/03/2011
11
09/03/2011
Should protect and monitor user devices to assess whether they should be allowed to access sensitive cloud resources .
Inserting additional layers of security such as
Trusted Front Door could converge on a
Multi-factor authentication
A provider may then require that SaaS and Platform-as-a-Service providers be certified according to these standards.
Trusted front door to cloud 13
09/03/2011
09/03/2011
14
Organizations should assess any cloud-service providers security governance processes and capabilities for Sufficiency, Maturity and
Consistency
Avoid credential leakage by leveraging bootstrap credentials and authentication from a trusted source within the organization Adhere to standards such as SAML, OAUTH, and XACML to avoid later lock-in
09/03/2011 Trusted front door to cloud
OPENID,
.
15
09/03/2011
16
Trust
providers must offer full Tracking, Auditing and Reporting on their effectiveness in providing those services.
trusted front door represents a unique opportunity to consolidate access event logs, simplifying audit trails and compliance reports.
Trusted front door to cloud 17
The
09/03/2011
09/03/2011
18
09/03/2011
19
09/03/2011
20
The Cloud Security Alliance brings together top service providers to help establish best practices and common standards for creating trusted front doors to cloud-based assets and for opening channels between online resources
Thus is creating a blueprint for trust that can expand and adapt to match the growth and development of cloud computing
Trusted front door to cloud 21
09/03/2011
09/03/2011
22
09/03/2011
23