Can regulators keep up with Cloud Computing?
We all know them almost by heart, PCI, SAS-70, HIPPA, SOX, and the ton of federal, state and business driven rules and regulations that companies and security engineers need to keep up with. In a rational and impassioned blog entry, Rational Survivability asks if regulators are keeping up with changes in the Cloud Computing environment. [...]
A6 Workgroup On The Way Soon
Sometime in late June, I wrote a post about a dilemma faced by customers of Cloud based services and pointed out to an elegant solution by Craig Balding of CloudSecurity.org. Unlike the traditional on-premise hosting, where it is possible to conduct external vulnerability scanning to check the security state of the computing environment, the Cloud [...]
