Tech Center Cloud Security
Dark Reading's Cloud Security Tech Center is your portal to all the news, product information, technical data, and other information related to the topic of cloud security. Written for those who manage cloud service provider relationships as well as security and IT professionals, the Cloud Security Tech Center is a single community dedicated to the discussion of security issues in private, hybrid, and third-party service provider cloud computing environments.
Featured Commentary
-
Jim ReavisCloud Security Certification Not So Simple
Current pass rate of CSA's CCSK test is only 53 percent.
News
-
Startups Tackle Secure Corporate Data Access From Personal Devices
With employees wanting to use data both inside and outside the company, cloud security startups have focused on two models: protecting data in third-party cloud services and protecting data on the endpoint
-
Cloud Security Starts With Development, Better Tools
Companies must train their developers in secure coding and rely on others' expertise for complex components of cloud services and Web applications
-
How Cybercriminals Attack The Cloud
What attacks are most likely against cloud computing environments? Here's a look -- and some advice
-
Web Hosting Provider Breached Via Adobe ColdFusion Vulnerabilities
Linode says attackers accessed one of its Web servers, some source code, and database
-
Microsoft: 'Embassies' Could Provide Users Sanctuary From Threats
Taking a cue from virtualized datacenters, Microsoft researchers envision a browser architecture that isolates Web apps from each other to strengthen security
More Stories
- Identifying And Remediating Security Vulnerabilities In The Cloud
- Should Cloud Providers Secure Their Outbound Traffic?
- Cloud Providers Work To Disperse Points Of Failure
- Cloud Security Falls Short ... But Could Be Great
- Cloud Security Measures Too Opaque For Customers
By The Numbers
Cloud Providers Have Fewer Security Incidents
The key factor is cloud providers can focus on security more efficiently than companies that keep IT processes in-house.
Source: Alert Logic's State of Security Report, Spring 2012
Commentary
-
Cloud Security Certification Not So Simple
By Jim Reavis
Current pass rate of CSA's CCSK test is only 53 percent
-
Future Clouds: Centralized Or Decentralized?
By Jim Reavis
The trend might be moving toward putting more eggs in fewer, more secure baskets
-
Dark Reading Launches Cloud Security Tech Center
By Tim Wilson
New subsite will focus on news and analysis of security issues in public and private cloud environments
-
Securing Databases In The Cloud
By Adrian Lane
Cloud services are comprised of pools of compute, network, information, and storage pools, so focus on securing the information rather than the database
Around the Web
Dark Reading Reports
-
How Cybercriminals Attack the Cloud
There's a lot for enterprises to like about the cloud computing model: It offers easy access to shared, elastically allocated computing resources; it creates savings on capital expenditure; and it reduces the running costs of operating a network. But all of this comes at the cost of control, which increases security challenges for IT pros. In this Dark Reading report, we examine the threat that cloud computing really poses, and we offer advice for tightening cloud providers' - and your own - security ship.
-
Identifying and Remediating Security Vulnerabilities In the Cloud
The cloud promises - and often delivers - tremendous cost savings and agility for enterprises. However, whether a company is leveraging the public cloud, a private cloud or some combination thereof, the security equation changes significantly when the cloud is a factor. In this Dark Reading report, we examine the security implications of cloud computing and offer advice for plugging any holes in the model.
-
Strategy, 5 Keys to Painless Encryption
Encryption is frequently used as the primary method to keep data from being stolen or destroyed. Our 2012 State of Encryption Survey profiles the struggles most IT groups have when trying to manage encryption products. Simply put, the old adage that "encryption is easy, key management is hard" still holds. But we think the game is changing. If you feel stuck with hard decisions and are seeking guidance when it comes to encryption, read on.
Other reports from the Cloud Security Tech Center:
Related Content
-
2012 Cyber Risk Report
In the HP 2012 Cyber Risk Report, HP Enterprise Security provides a broad view of the vulnerability landscape, ranging from industry-wide data down to a focused look at different technologies, including web and mobile. This report will provide actionable security intelligence critical for organizations to understand the vulnerability landscape as well as provide insight on how best to deploy their resources to minimize security risk.
-
Security for the Cloud
The cloud brings with it some unique challenges for security monitoring and management that require careful review and adjustment to security strategies, tools, and policies. Understanding what capabilities become critical in a cloud environment is key. This brief outlines how the HP Security Intelligence Platform delivers security capabilities to protect and defend business functions that rely on the cloud.
-
Delivering Software Security in the Cloud
Organizations need the ability to test the security of their software quickly, accurately, affordably, and without any software to install or manage. HP Fortify on Demand is an automated on-demand security-as-a-service (SaaS) testing solution that helps organizations ensure the security of their applications licensed from third parties. Download this white paper to learn how HP Fortify on Demand ensures a secure development throughout the software development lifecycle.
-
Mapping Security for Your Virtual Environment
With the gaining popularity of virtualization in today's enterprise data centers, you need a virtual security solution that allows you to confidently adopt virtualization throughout your data center without compromising on your existing security postures. This brief will detail how HP TippingPoint Secure Virtualization Framework is designed to provide IT personnel a single consolidated, yet flexible solution for extending the HP TippingPoint IPS Series, with its excellent threat protection into the virtualized data center.
-
Providing Security for Software Systems in the Cloud
This paper details risks to software deployed in the cloud. Some risks impact security in much the same way wherever and however the software is hosted, but many old risks take on new importance when software makes the jump to the cloud. In this paper, we discuss notable concerns in all of these areas and describe an approach for assessing a software system's readiness to be deployed in the cloud.
Free Research and Reports
Whitepapers
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- How Hackers Fool Your Employees: People are your most vulnerable endpoint. Make sure your security strategy addresses that fact.
- Not All Or Nothing: Effective security doesn't mean stopping all attackers.