CLOUD SECURITY AND PRIVACY: AN ENTERPRISE PERSPECTIVE ON RISKS AND COMPLIANCE
- ISBN13: 9780596802769
- Condition: NEW
- Notes: Brand New from Publisher. No Remainder Mark.
Product Description
You might courtesy clouded cover computing as an preferred approach for your association to carry out IT costs, though do we know how in isolation as well as secure this use unequivocally is? Not most people do. With Cloud Security as well as Privacy, you’ll sense what’s during interest when we certitude your interpretation to a cloud, as well as what we can do to keep your practical infrastructure as well as web applications secure.
Ideal for IT staffers, report confidence as well as remoteness practitioners, commercial operation managers, use provider… More >>
Cloud Security as well as Privacy: An Enterprise Perspective upon Risks as well as Compliance
Cloud, Compliance, Enterprise, Perspective, Privacy, Risks, security
![[Ask]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/ask.png)
![[del.icio.us]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/delicious.png)
![[Facebook]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/facebook.png)
![[Furl]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/furl.png)
![[Google]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/google.png)
![[MySpace]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/myspace.png)
![[Reddit]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/reddit.png)
![[Spurl]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/spurl.png)
![[Squidoo]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/squidoo.png)
![[StumbleUpon]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/stumbleupon.png)
![[Technorati]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/technorati.png)
![[Twitter]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/twitter.png)
![[Windows Live]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/windowslive.png)
![[Yahoo!]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/yahoo.png)
![[Email]](http://www.ieeehomelandsecurity2007.org/wp-content/plugins/bookmarkify/email.png)
There are two kinds of reactions I get when talking to various folks about Cloud computing – either they love it or hate it. The second category is primarily due to paranoia about entrusting someone else with the responsibility to keep their business systems operating safely. This book does a very good job of methodically laying out the issues and the steps to address them.
The things I liked in this book are
* easy to read with just the right mix of technical jargons
* references and links to a many practical issues that have already occurred, that makes the stuff you are reading very relevant
I am sure that this book will come in handy to me as an architect helping management decide which systems should be hosted in house vs which go into the cloud.
Sanjay
Rating: 5 / 5
Tim Mather, et.al.’s CLOUD SECURITY AND PRIVACY: AN ENTERPRISE PERSPECTIVE ON RISKS AND COMPLIANCE blends theory and applications in a powerful survey of Cloud computing and on demand computing. It is for programmers trying to adopt cloud computing methods and offers an assessment of the latest options in data security and storage.
Rating: 5 / 5
“Cloud Computing” has been the buzz word for a while now and fortune
1000 companies are drawn to this new trend. The technology is being
adopted by customers without fully understanding the pros and cons of
Cloud Computing, similar to the early days of Virtualization. This
book addresses the pros and cons of Cloud Computing to help IT (who is
responsible for service delivery to their business customers)
understand the risks and advantages of utilizing Cloud services.
Virtualization administrators, security administrators, CIOs,
practically everyone responsible for service delivery can benefit from
this book. This book introduces the concept, digs deeper into the
deployment models, threats, vulnerabilities, talks about compliance
challenges in cloud, and compares various services that leverage cloud
to deliver security-as-a-service.
This book is great read to keep up with this emerging trend and to arm
yourself with technical and business knowledge to make informed
decisions, specially if you are part of the team deciding to go the
cloud for your computing needs.
Thanks
Sudhakar
Rating: 5 / 5
My title is no accident, I heard Marry Ann Davidson CSO of Oracle, use it in an RSA conference referring to cloud computing she also spoke about it in ISF Canada 2009. Where the whole subject has been elevated to theological warfare.
To sort the whole subject out and become familiar with the evolution of cloud computing I searched for a book on the subject and found many. To be fair to the rest of the books out there, I only read one of them, yes you guessed it, Cloud Security and Privacy. Being a security person myself the title had the 2 operative words I needed to see Security and Privacy (and yes, I am shallow).
Oh! yes about the book, this is by far the best book I have read for a long time, what impressed me is the way it is written, there are questions in nearly every chapter, as you read the question you realize that you were thinking that exact question, or you would have if you knew what to think. For example “what is cloud computing?” Ok I know that’s given but stay with me; now here are some of the rest of the questions, “What Is Privacy?” I think that is one hell of a question and the answers given by the author are not ground breaking, however “What Is the Data Life Cycle?” “What Are the Key Privacy Concerns in the Cloud? “, “Who Is Responsible for Protecting Privacy?” put all these questions and more together and properly answer them all, you end up with a near masterpiece.
By the end of Chapter 3 you are not only familiar with cloud computing but you are now able to speak IAAS, PAAS, SAAS and actually understand the infrastructure security as it relates to IAAS.
I specially liked Chapter 6. Security management in the cloud, a very well written chapter about security management as it relates to the cloud computing, both ITIL and ISO27001 controls are mapped to the cloud.
Chapter Seven which deals with Privacy is one of the most important chapters, Privacy may be the single most important factor in deciding whether one chooses to use the cloud computing or not. The author includes a very reach sampling of many of the laws related to Privacy acts throughout the glob and yet in the beginning of the chapter you’ll find the following dilemma ” but although it may be possible to transfer liability via contractual agreements, it is never possible to transfer accountability.” -Cloud Security and Privacy. I may argue that this chapter should have been the second chapter of the book.
In conclusion:
I could write a book about this book, but that would not be fair to you (as you may have noticed, I do not have the talent). Simply buy the book and read it yourself, it is not that expensive and it certainly looks more intelligent than those other books you have about Hacking something or other.
Best Fishes and thank you for reading.
Vik
Rating: 5 / 5
It goes without saying that I was very excited to pick up the first book on cloud security and privacy. Due to my Cloud Security Alliance (CSA) involvement, I was extremely interested in Tim’s take on the subject. The book is indeed a comprehensive treatise on everything cloud, and everything cloud security. The author team covers the topics based on IaaS/PaaS/SaaS (SPI) for infrastructure, platform, and software as a service model. They address stored data confidentiality, cloud provider operations, identity and access management in the cloud, availability management as well as privacy. My favorite chapter was of course the one on audit and compliance – chapter 8. Another fun chapter was chapter 12 on conclusions and the future of the cloud (which is, BTW, all but assured…).
One of the most important things I picked from the book was a very structured view on separation of security responsibilities between the cloud provider and the customer for all of the SPI scenarios. This alone probably justifies getting your own copy.
As far as technical contents, the book stays fairly high-level even though it touches on the details of SAML and other authentication protocols.
The only downside of the book is its extremely dry writing style. There are only a few examples and case studies. Following “just the facts” model sometimes might lead the reader towards losing interest, no matter how important the subject is – and this subject is pretty darn important. To put this in the context, I do read security books for fun, not only for work.
Rating: 4 / 5