CloudTrust Protocol Information Overview (pdf) - Cloud Security ...
12.07.2015 Views
Share Embed Flag

CloudTrust Protocol Information Overview (pdf) - Cloud Security ...

CloudTrust Protocol Information Overview (pdf) - Cloud Security ...

CloudTrust Protocol Information Overview (pdf) - Cloud Security ...

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
  • No tags were found...
cloudsecurityalliance.org

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

START NOW

A Complete <strong>Cloud</strong> <strong>Security</strong> Governance, Risk, andCompliance (GRC) Stack<strong><strong>Cloud</strong>Trust</strong> <strong>Protocol</strong> (CTP) Included Within CSA GRC StackGovernment Specs Extensions Commercial???Deliver “continuousmonitoring” required byA&A methodologiesContinuous monitoring … witha purpose• Common technique and nomenclatureto request and receive evidence andaffirmation of controls from cloudproviders???Claims, offers, and the basisfor auditing service delivery• Common interface and namespace toautomate the Audit, Assertion,Assessment, and Assurance (A6) ofcloud environments• FedRAMP• DIACAP• Other C&A standardsPre-audit checklists andquestionnaires to inventorycontrols• Industry-accepted ways to documentwhat security controls existNIST 800-53, HITRUST CSF,ISO 27001/27002, ISACACOBIT, PCI, HIPAA, SOX,GLBA, STIG, NIST 800-144,SAS 70, …The recommendedfoundations for controls• Fundamental security principles inassessing the overall security risk of acloud provider<strong><strong>Cloud</strong>Trust</strong> <strong>Protocol</strong> Orientation | Ron Knode | CTP to CSA6 June 2011 Page 8

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!