Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

8/30/2012
02:13 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Cloud Security Alliance Forms Big Data Working Group

Group’s immediate focus will be to develop an experimental platform of test data sets from different industry verticals

San Francisco, CA and Sunnyvale, CA – August, 29, 2012 – The Cloud Security Alliance (CSA) and Fujitsu Laboratories of America today announced launch of the Big Data Working Group which will take industry ownership in addressing the need for collaborative research and solutions to today’s big data security challenges. Chaired by Sreeranga Rajan of Fujitsu Laboratories of America with co-chairs Neel Sundaresan of eBay and Wilco Van Ginkel of Verizon, the CSA Big Data Working Group will work to address the security and privacy issues magnified today by the velocity, volume, and variety of big data, such as large-scale cloud infrastructures, diversity of data sources and formats, streaming nature of data acquisition and high volume inter-cloud migration.

“As a recognized leader in development and deployment of large scale cloud infrastructures, we are pleased to work with our fellow members at the CSA to develop best practices and standards for big data security and privacy,” said Yasunori Kimura, President and CEO of Fujitsu Laboratories of America. “We invite companies from around the world facing big data challenges to join us in this important research effort.”

Specifically, the CSA Big Data Working Group will be identifying scalable techniques for data-centric security and privacy problems. In doing so the group will look to crystallize the best practices for security and privacy in big data, help industry and governments with adoption of best practices, establish liaisons with other organizations in order to coordinate the development of big data security and privacy standards, and accelerate the adoption of novel research aimed to address security and privacy issues.

To address the large number of issues tied to big data security and privacy, the group will look to provide research and guides on six specific themes:

· Big data-Scale Crypto

· Cloud Infrastructure

· Data Analytics for Security

· Framework and Taxonomy

· Policy and Governance

· Privacy

“Everyday 2.5 quintillion bytes of data are being created resulting in a myriad number of data security and cloud-computing security concerns,” said Sreeranga Rajan, Director of Software Systems Innovation at Fujitsu Laboratories of America. “By collaborating as a global community of thought leaders and researchers, we are not only looking to help the industry overcome these challenges but also to leverage new opportunities for the monitoring and detection of security threats enabled by big data.”

The group’s immediate focus will be to develop an experimental platform of test data sets from different industry verticals such as e-commerce and healthcare. The group’s first research report, due out this fall, will identify the new and fundamentally different technical and organizational problems when addressing big data security and privacy. Future planned reports include a focus on providing specific actionable information for big data security and privacy, creating standards for big data security and privacy best practices, and establishing security and privacy test beds to help strengthen security and privacy of big data cloud platforms.

Companies and individuals interested in learning more or joining the group can visit cloudsecurityalliance.org/research/big-data/.

Contacts Kari Walker ZAG Communications 703.928.9996 [email protected]

Judy Gallegos Fujitsu Laboratories of America, Inc. 408-530-4603 [email protected]

About Cloud Security Alliance The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. The Cloud Security Alliance is led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.

About Fujitsu Fujitsu is the leading Japanese information and communication technology (ICT) company offering a full range of technology products, solutions and services. Over 170,000 Fujitsu people support customers in more than 100 countries. We use our experience and the power of ICT to shape the future of society with our customers. Fujitsu Limited (TSE:6702) reported consolidated revenues of 4.5 trillion yen (US$54 billion) for the fiscal year ended March 31, 2012. For more information, please see: http://www.fujitsu.com.

About Fujitsu Laboratories of America Fujitsu Laboratories of America, Inc. is a wholly owned subsidiary of Fujitsu Laboratories Ltd. (Japan), focusing on research on Internet, interconnect technologies, software development and solutions for several industry verticals. Conducting research in an open environment, it contributes to the global research community and the IT industry. It is headquartered in Sunnyvale, CA. For more information, please see: www.fla.fujitsu.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
US Capitol Attack a Wake-up Call for the Integration of Physical & IT Security
Seth Rosenblatt, Contributing Writer,  1/11/2021
IoT Vendor Ubiquiti Suffers Data Breach
Dark Reading Staff 1/11/2021
The Data-Centric Path to Zero Trust
Altaz Valani, Director of Insights Research, Security Compass,  1/13/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-7343
PUBLISHED: 2021-01-18
Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files.
CVE-2020-28476
PUBLISHED: 2021-01-18
All versions of package tornado are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configura...
CVE-2020-28473
PUBLISHED: 2021-01-18
The package bottle from 0 and before 0.12.19 are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with defa...
CVE-2021-25173
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory allocation with excessive size vulnerability exists when reading malformed DGN files, which allows attackers to cause a crash, potentially enabling denial of service (crash, exit, or restart).
CVE-2021-25174
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory corruption vulnerability exists when reading malformed DGN files. It can allow attackers to cause a crash, potentially enabling denial of service (Crash, Exit, or Restart).