Please note that this is a page from a previous version of Continuity Central and is no longer being updated.

To see the latest business continuity news, jobs and information click here.

Business continuity information

Security as a service defined

Cloud Security Alliance issues security as a service white paper: aims to provide clear definitions of the different categories of security services that can be provided via the cloud.

The Cloud Security Alliance (CSA) has announced that its Security as a Service Working Group has published its first white paper, ‘Defined Categories of Service 2011’.

The purpose of this group’s research is to identify consensus definitions of what security as a service means, to categorize the different types of security as a service and to provide guidance to organizations on reasonable implementation practices.

Until now there has been limited research into the provision of security services in an elastic cloud model that scales as the client requirements change. This first white paper designed to provide clear definitions of the different categories of security services that can be provided via the cloud (e.g. elastic, on demand) model.

“Vendors have attempted to satisfy this demand for security by offering security services in a cloud platform, but because these services take many forms, they have caused market confusion and complicated the selection process,” said Kevin Fielder, co-chair of the working group.

“This new research project aims to aid both cloud customers and cloud providers, to provide greater clarity on security as a service – and to help end users understand the unique nature of cloud-delivered security offerings so they can evaluate the offerings and understand if they will meet their needs.”

“The aim of this research is to enable enterprises to make use of security services in new ways, or in ways that would not be cost effective if provisioned locally,” said Cameron Smith, co-chair of the working group.

The Security as a Services Categories of Service 2011 white paper covers the following categories of service;

  • Identity and access management
  • Data loss prevention
  • Web security
  • Email security
  • Security assessments
  • Intrusion management
  • Security information and event management
  • Encryption
  • Business continuity and disaster recovery
  • Network security.

Read the paper (PDF).

•Date: 27th September 2011 • Region: World •Type: Article • Topic: Cloud computing

Business Continuity Newsletter Sign up for Continuity Briefing, our weekly roundup of business continuity news. For news as it happens, subscribe to Continuity Central on Twitter.

How to advertise How to advertise on Continuity Central.

To submit news stories to Continuity Central, e-mail the editor.

Want an RSS newsfeed for your website? Click here