Draft of Table of Contents for Cloud Computing Use Cases White Paper V3

4 views
Skip to first unread message

DCR

unread,
Jan 11, 2010, 6:17:40 AM1/11/10
to Cloud Computing Interoperability Forum (CCIF)
This is a copy of the post that was just made today to the Cloud
Computing Use Cases White Paper (http://groups.google.com/group/cloud-
computing-use-cases).

We look forward to your comments to the original post at http://su.pr/2Be9pA
or directly to this post.

__________________________

Friends, here's a proposed ToC for Version 3. As always, this is an
attempt to organize our discussions of the last couple of months.

Introduction & Motivation

A general discussion of the importance of security

Security Controls

A short discussion of the requirements we've discussed here:
- Asset Management
- Service/User Identity, Access Control and Roles/Attributes
- Security Policy
- Cryptography, Key and Certificate Management
- Network Security
- Data/Storage Security
- Endpoint Security
- Security Event/Auditing/Reporting
- Workload/Service Management
- Security Service Automation

Security Patterns & Federation

Cloud Security Roles

I think patterns and roles are a great way to organize the
discussion as it relates to the security controls mentioned above.

Security Use Cases

- The use cases we've discussed. Some use cases were discussed in
broad terms (supply chain and healthcare), it would be great if we
could flesh those out here.

Cross-references

- These were useful ways of summarizing the information in earlier
versions. Security Controls vs. Service Models (*aaS), Security

Controls vs. Deployment Models and Security Controls vs. Security

Patterns could be useful tables.

Let me know what you think.

As for a schedule, I plan to have a first draft posted by next Friday
(the 15th), a second draft the following Friday (the 22nd), with a
final Version 3 ready by the end of the month.

Cheers,

Doug

KLC...@aol.com

unread,
Jan 11, 2010, 3:00:57 PM1/11/10
to cloud...@googlegroups.com
Doug:  instead of a Version 3 of Cloud Use Cases, the ToC below looks like a new document called Cloud Security Use Cases.  Can you clarify if Version 3 is an addendum to previous doc or a replacement? How does the new ToC fit with what's been done?  Thanks.
 
--
You received this message because you are subscribed to the Google
Groups "Cloud Computing Interoperability Forum (CCIF)" group.
To post to this group, send email to cloud...@googlegroups.com
To unsubscribe from this group, send email to
cloudforum+...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/cloudforum?hl=en

-----
Join our Twitter Group at www.twitter.com/cloudforum
Or Our Linkedin Group at http://www.linkedin.com/e/gis/927567

Sam Johnston

unread,
Jan 12, 2010, 10:35:19 AM1/12/10
to cloud...@googlegroups.com
There appears to be some amount of overlap here with the Cloud Security Alliance (CSA) work - I trust you're aware of that?

Sam

Geir Magnusson Jr.

unread,
Jan 12, 2010, 10:49:02 AM1/12/10
to cloud...@googlegroups.com
Don't forget the Alliance of Cloud Security, nor the Security Alliance for Cloud!

geir

Paulo Calcada

unread,
Jan 12, 2010, 10:53:44 AM1/12/10
to cloud...@googlegroups.com
Good point Sam,

Although I think that the work developed by the CSA should be used as a complement to the use cases examples. I think that they do no overlap.

Paulo

2010/1/12 Sam Johnston <sa...@samj.net>



--
http://pcalcada.name
--              

Reply all
Reply to author
Forward
0 new messages