SYS-CON MEDIA Authors: Jim Kaskade, Yeshim Deniz, Elizabeth White, Greg Ness, Sean Houghton

News Feed Item

Cloud Security Alliance Sets Research Agenda for Upcoming CSA Congress 2014

New Research from Antibot and Big Data Working Groups along with New Surveys to be Featured at this Year's Event

SAN JOSE, Calif., Aug. 15, 2014 /PRNewswire-USNewswire/ -- The Cloud Security Alliance (CSA) today revealed new research, surveys and volunteer opportunities to be announced during the course of its upcoming CSA Congress and International Association of Privacy Professionals Privacy Academy,  scheduled to take place September 17-19, 2014, at the San Jose Convention Center in San Jose, CA.

Cloud Security Alliance Logo.

"With the rise of emerging cloud security issues such as server-based botnet activity along with ongoing decisions tied to complex topics such as big data, these new reports will aid the industry in finding the best approaches to addressing issues in their own environment," said J.R. Santos, Global Research Director of the CSA. "We are also looking forward to sharing the results of the cloud usage survey to help enterprises better understand and bring to light unique and useful insights about today's cloud risk and opportunities."

Research, Surveys and Volunteer Opportunities to be Announced Include:

Big Data Security Framework, Taxonomy and Risk Management Approach

The Big Data Working Group will release The Big Data Taxonomy Report that will propose a seven-dimensional taxonomy for big data. The main objective of this taxonomy is to help decision makers navigate the myriad choices in compute and storage infrastructures as well as data analytics techniques, security, and privacy frameworks. The taxonomy has been pivoted around the nature of the data to be analyzed.

Cloud Usage: Risks and Opportunities Survey Results

The CSA will release the results of a new survey of global IT and security professionals on organizational usage of and perceived risks in enterprise cloud apps. The survey looks at IT perceptions about sensitive content uploaded to and shared from cloud apps, as well as authentication and policy enforcement within cloud apps and data breaches involving cloud apps. Sponsored by Netskope and Okta, the survey aims to bring to light unique and useful insights about today's cloud risk and opportunities.

Antibot Working Group – Call for Volunteers to help with the Botnet Essential Practices for Cloud Providers White Paper

A recent evolution in botnet innovation has been the introduction of server-based Bots as an alternative to single user personal computers. Since its formation in 2013, the CSA Anti-Bot Working Group has been working on solutions to prevent, respond and mitigate against botnets occurring on cloud infrastructures.  The group's first research report, Botnet Essential Practices for Cloud Providers, aims to develop and maintain a research portfolio providing capabilities to assist the cloud provider industry in taking a lifecycle approach to botnet prevention.  We are seeking volunteers to continue to help with the development of this research artifact.

Financial Survey Opening: How Cloud Is Being Used in Financial Sector

The Financial Working Group will open a new survey that aims to accelerate the adoption of secure cloud services best practices in the financial industry. The results of the survey will look to identify and share the industry's main concerns regarding the delivery and management of cloud services in the financial sector. The survey will run from September 1st through September 30th with the results to be published in Q4 2014.

This year, the CSA and the IAPP are combining their Congress US and Privacy Academy events into a conference in the heart of Silicon Valley. This conference will offer attendees more than eighty sessions to choose from covering all aspects of privacy and cloud security. Nowhere else will cloud, IT and privacy professionals be able to meet and learn from each other, and gain visibility to practical, implementable solutions delivered by leading industry experts. Together the combined event will broaden the educational and networking opportunities available to both IAPP and CSA members.

Cloud Security Alliance Congresses continue to be the industry's premier gathering for IT security professionals and executives who must further educate themselves on the rapidly evolving subject of cloud security. In addition to offering best practices and practical solutions for remaining secure in the cloud, CSA Congresses give attendees exposure to industry-specific case studies that will help them learn and leverage best practices used by their peers in moving to a secure cloud.

IAPP conferences are recognized internationally as the leading forums for the discussion and debate of issues related to privacy policy and practice. The annual IAPP Privacy Academy is known for its diverse programming around operational privacy and technology.

About the Cloud Security Alliance

The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. The Cloud Security Alliance is led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.

About the IAPP  

The International Association of Privacy Professionals (IAPP) is the largest and most comprehensive global information privacy community and resource, helping practitioners develop and advance their careers and organizations manage and protect their data. Founded in 2000, the IAPP is a not-for-profit association that helps define, support and improve the privacy profession through networking, education and certification. More information about the IAPP is available at www.privacyassociation.org.

Logo - http://photos.prnewswire.com/prnh/20130723/DC51526LOGO

SOURCE Cloud Security Alliance

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
"Matrix is an ambitious open standard and implementation that's set up to break down the fragmentation problems that exist in IP messaging and VoIP communication," explained John Woolf, Technical Evangelist at Matrix, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
The Internet of Things will put IT to its ultimate test by creating infinite new opportunities to digitize products and services, generate and analyze new data to improve customer satisfaction, and discover new ways to gain a competitive advantage across nearly every industry. In order to help corporate business units to capitalize on the rapidly evolving IoT opportunities, IT must stand up to a new set of challenges. In his session at @ThingsExpo, Jeff Kaplan, Managing Director of THINKstrateg...
The Internet of Things promises to transform businesses (and lives), but navigating the business and technical path to success can be difficult to understand. In his session at @ThingsExpo, Sean Lorenz, Technical Product Manager for Xively at LogMeIn, demonstrated how to approach creating broadly successful connected customer solutions using real world business transformation studies including New England BioLabs and more.
How do APIs and IoT relate? The answer is not as simple as merely adding an API on top of a dumb device, but rather about understanding the architectural patterns for implementing an IoT fabric. There are typically two or three trends: Exposing the device to a management framework Exposing that management framework to a business centric logic Exposing that business layer and data to end users. This last trend is the IoT stack, which involves a new shift in the separation of what stuff happe...
An entirely new security model is needed for the Internet of Things, or is it? Can we save some old and tested controls for this new and different environment? In his session at @ThingsExpo, New York's at the Javits Center, Davi Ottenheimer, EMC Senior Director of Trust, reviewed hands-on lessons with IoT devices and reveal a new risk balance you might not expect. Davi Ottenheimer, EMC Senior Director of Trust, has more than nineteen years' experience managing global security operations and asse...
DevOps is all about agility. However, you don't want to be on a high-speed bus to nowhere. The right DevOps approach controls velocity with a tight feedback loop that not only consists of operational data but also incorporates business context. With a business context in the decision making, the right business priorities are incorporated, which results in a higher value creation. In his session at DevOps Summit, Todd Rader, Solutions Architect at AppDynamics, discussed key monitoring techniques...
P2P RTC will impact the landscape of communications, shifting from traditional telephony style communications models to OTT (Over-The-Top) cloud assisted & PaaS (Platform as a Service) communication services. The P2P shift will impact many areas of our lives, from mobile communication, human interactive web services, RTC and telephony infrastructure, user federation, security and privacy implications, business costs, and scalability. In his session at @ThingsExpo, Robin Raymond, Chief Architect...
The 3rd International @ThingsExpo, co-located with the 16th International Cloud Expo - to be held June 9-11, 2015, at the Javits Center in New York City, NY - announces that it is now accepting Keynote Proposals. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago. All major researchers estimate there will be tens of billions devices - computers, smartphones, tablets, and sensors - connected to th...
What do a firewall and a fortress have in common? They are no longer strong enough to protect the valuables housed inside. Like the walls of an old fortress, the cracks in the firewall are allowing the bad guys to slip in - unannounced and unnoticed. By the time these thieves get in, the damage is already done and the network is already compromised. Intellectual property is easily slipped out the back door leaving no trace of forced entry. If we want to reign in on these cybercriminals, it's hig...
The definition of IoT is not new, in fact it’s been around for over a decade. What has changed is the public's awareness that the technology we use on a daily basis has caught up on the vision of an always on, always connected world. If you look into the details of what comprises the IoT, you’ll see that it includes everything from cloud computing, Big Data analytics, “Things,” Web communication, applications, network, storage, etc. It is essentially including everything connected online from ha...
SYS-CON Media announced that Centrify, a provider of unified identity management across cloud, mobile and data center environments that delivers single sign-on (SSO) for users and a simplified identity infrastructure for IT, has launched an ad campaign on Cloud Computing Journal. The ads focus on security: how an organization can successfully control privilege for all of the organization’s identities to mitigate identity-related risk without slowing down the business, and how Centrify provides ...
The Internet of Things will greatly expand the opportunities for data collection and new business models driven off of that data. In her session at @ThingsExpo, Esmeralda Swartz, CMO of MetraTech, discussed how for this to be effective you not only need to have infrastructure and operational models capable of utilizing this new phenomenon, but increasingly service providers will need to convince a skeptical public to participate. Get ready to show them the money!
We are reaching the end of the beginning with WebRTC, and real systems using this technology have begun to appear. One challenge that faces every WebRTC deployment (in some form or another) is identity management. For example, if you have an existing service – possibly built on a variety of different PaaS/SaaS offerings – and you want to add real-time communications you are faced with a challenge relating to user management, authentication, authorization, and validation. Service providers will w...
The 3rd International Internet of @ThingsExpo, co-located with the 16th International Cloud Expo - to be held June 9-11, 2015, at the Javits Center in New York City, NY - announces that its Call for Papers is now open. The Internet of Things (IoT) is the biggest idea since the creation of the Worldwide Web more than 20 years ago.
In her General Session at 15th Cloud Expo, Anne Plese, Senior Consultant, Cloud Product Marketing, at Verizon Enterprise, focused on finding the right mix of renting vs. buying Oracle capacity to scale to meet business demands, and offer validated Oracle database TCO models for Oracle development and testing environments. Anne Plese is a marketing and technology enthusiast/realist with over 19+ years in high tech. At Verizon Enterprise, she focuses on driving growth for the Verizon Cloud platfo...