Recent Articles

1. WhiteHat Security Founder and CTO to Present at Black Hat USA 2010 and Cloud Security Alliance Summit

   Explore Article redorbit.com (Jul 22 2010)

   SANTA CLARA, Calif., July 22 /PRNewswire/ -- Jeremiah Grossman, founder and chief technology officer, WhiteHat Security, a leading provider of Who: website risk management solutions Black Hat Topic: "Breaking Browsers: Hacking Auto- What: Complete" CSA Summit Topic: "CSA Application Security Findings" Where: Black Hat USA 2010 July 28 -29, 2010 Caesar's Palace, Las Vegas 3570 Las Vegas Boulevard ... (Read Full Article)
   

   Comment on Article Mentions:   California   Cloud Security Alliance Summit   Firefox

2. Cloud Identity Summit

   Explore Article 1 Raindrop (Jul 21 2010) Compliance

   Yesterday Hoff and I led a Cloud Security workshop at the Cloud Identity Summit. Hoff talked in a lot of detail about various Cloud architectural models, security problems and the Infrastructure, Metastructure and Infostructure layers. Today I did a keynote talk on Cloud Security: Yesterday, Today and Tomorrow. In the talk I described four essential architectural elements for Cloud security: Gateway (to limit attack surface), Monitor (Build Visibility In), STS (issue, validate, exchange security tokens), and PEP/PDP (dynamically make auth*... (Read Full Article)
   

   Comment on Article

3. Step Aside, Cloud: 'Crowd Computing' the Future of IT, Too

   Explore Article CIO.com (Jul 21 2010)

   While firms are up on their toes in their respective bids to take their companies to the cloud--touted to be the future of computing--a visiting MIT (Massachusetts Institute of Technology) professor suggested Tuesday a complementary technology that will harness new silos of computing power, by way of the crowd. (Read Full Article)
   

   Comment on Article Mentions:   MIT

4. On Amrit Williams’ (BigFix) Beyond The Perimeter Podcast

   Explore Article rationalsurvivability.com (Jul 18 2010)

   My good friend Amrit Williams (@amrittsering) from BigFix (congrats on the IBM acquisition!) has an awesome Podcast titled “Beyond the Perimeter.” He was nice enough to invite me to record episode 93 titled “Is Trust the Real Barrier To Cloud Computing?” (ultimately points you to an iTunes subscription.) We spoke for almost an hour on [...] (Read Full Article)
   

   Comment on Article

5. Incomplete Thought: Why We Need Open Source Security Solutions More Than Ever…

   Explore Article rationalsurvivability.com (Jul 17 2010)

   Image via Wikipedia I don’t have time to write a big blog post and quite frankly, I don’t need to. Not on this topic. I do, however, feel that it’s important to bring back into consciousness how very important open source security solutions are to us — at least those of us who actually expect [...] (Read Full Article)
   

   Comment on Article

6. Cloud Computing - Evaluating Security-as-a-Service

   Explore Article CIOUpdate (Jul 16 2010) Compliance

   Cloud Computing - Evaluating Security-as-a-ServiceCIOUpdate (blog)Zscaler Cloud Services - Unlike the others mentioned above, Zscaler was built from the ground up as a cloud security service. The solution requires neither ...and more » (Read Full Article)
   

   Comment on Article Mentions:   Symantec Hosted Services   Symantec   McAfee

7. Apple preps iPhone 4 response; States line up for Google fiber network plea

   Explore Article NetworkWorld.com (Jul 15 2010)

   Apple preps iPhone 4 response; States line up for Google fiber network pleaNetworkWorld.com... senior vice president and general manager of the Security and Compliance business unit at CA will host a panel at RSA discussing cloud security and. ... (Read Full Article)
   

   Comment on Article Mentions:   Security and Compliance

8. Cloud security strategies: Where does IDS fit in?

   Explore Article NetworkWorld.com (Jul 15 2010) Compliance

   Security practitioners diving into cloud computing must make older security tools like IDS work in this new world. In a CSO podcast last week, Stu Wilson, CTO of IDS provider Endace, sought to explain how this older technology is still relevant in enterprise cloud security strategies. (Read Full Article)
   

   Comment on Article

9. GAO: Federal agencies lack advisement on cloud security

   View all 3 articles » Explore Article scmagazineus.com (Jul 7 2010) Compliance

   GAO: Federal agencies lack advisement on cloud securitySC Magazine USA growing number of federal agencies are running some form of cloud computing, but nearly all lack policies around securing data hosted offsite, ...and more » (Read Full Article)
   

   Google's Mike Bradshaw, Federal CIO Vivek Kundra Talk Cloud Security - GovCon Wire  
   Lawmakers Question the Security of Cloud Computing - pcworld.com  
   

   Comment on Article Mentions:   Nist

10. Top Cloud Computing Security Risk: One Company Gets Burned

    Explore Article NetworkWorld.com (Jul 14 2010) Compliance

    Top Cloud Computing Security Risk: One Company Gets BurnedNetworkWorld.comIn March, research from the Cloud Security Alliance listed customer ignorance of security practices--and service providers' refusal to give information to ...and more » (Read Full Article)
    

    Comment on Article Mentions:   Josh Corman   Cloud Security Alliance

11. Sachar Paulus: The new Swift agreement contains the seeds of new security issues

    Explore Article Home - Kuppinger Cole + Partner (Jul 13 2010)

    In Kuppinger Cole The European Parliament has passed the controversial new Swift agreement following intense debate aimed at dispelling worries about data protection. In fact, nothing much was changed, and the amount of data to be forwarded to US authorities involved in the “war of terrorism” remains mind-boggling.more (Read Full Article)
    

    Comment on Article

12. Are you following cloud security standards?

    Explore Article InformationWeek (Jul 13 2010) Compliance , IAM

    Are you following cloud security standards?InformationWeek IndiaTo help promote information security and good practices related to cloud computing, ISACA joined the CSA (Cloud Security Alliance) ...and more » (Read Full Article)
    

    Comment on Article Mentions:   Cloud Security Alliance

13. Case Study: Hungry for Virtual Server Security

    Explore Article CIO.com (Jul 11 2010)

    When it comes to sampling innovative technology, Schwan Foods, a multibillion-dollar frozen food producer, digs right in. (Read Full Article)
    

    Comment on Article Mentions:   Network World

14. Using Consumer Identities for Business Interactions

    Explore Article IdentityBlog (Jul 10 2010) IAM

    Medtronic constructed an identity for the user containing both claims that came from the original PayPal identity and claims it added (“mashed-up”) to form a new, composite identity. (Read Full Article)
    

    Comment on Article Mentions:   Microsoft

15. Will Strong Authentication ever Reach a Mass Scale? (Part 2 of 2)

    Explore Article Identity Management Consulting (Jul 7 2010)

    Back to the initial point of this article... Antiquated, paper-based processes should be decomposed and replaced by a modern, electronic solutions. Authenticating a digital identity will be an essential building block in the development of such a solution. Just like the electric battery will be a building block in the rise of the electric car (ala Shai Agassi). And here is where I commend the vision and entrepreneurship of Brent and Sal. They have both come up with multi-factor authentication solutions that meet Kantara Initiative's Identity Assurance Framework Assurance Levels 3 (AL3) and 4 (AL4) credential management requirements from a ... (Read Full Article)
    

    Comment on Article Mentions:   Saml   Kantara Initiative

16. See all articles >>