Monday at the RSA Conference

Yesterday, the Cloud Security Alliance had their Cloud Security Alliance Summit 2011. This event was well attended, but it seemed to me that people still weren't focusing on the biggest information security problem that cloud computing causes, and that's the fact that cloud providers still don't quite seem to be as stable as we'd like them to be. According to the cloud security incident database that the Open Security Foundation maintains at cloutage.org, availability is still the biggest problem that users of cloud computing face, but availability seemed to be in distant third place, behind confidentiality and integrity, at this year's CSA event.  

It also looks like the CSA is offering a Certificate in Cloud Security Knowledge, which you can get if you pass a test and pay $295. This certificate just says that you've read and understood two documents: the CSA's "Security Guidance for Critical Areas of Focus in Cloud Computing, V2.1" (PDF) and European Network and Information Security Agency's whitepaper "Cloud Computing: Benefits, Risks and Recommendations for Information Security" (PDF). As certifications go, it doesn't seem to be one of the more useful ones or one that's terribly hard to get, but it's also not very expensive, so it might be worth taking a look at, particularly if you've been looking for a way to make yourself learn the basics of cloud security.

Leave a Reply

Your email address will not be published. Required fields are marked *