Hyperguarding your Web Applications

About

Hyperguarding your Web Applications is maintained by affiliates of art of defence as a forum for discussing news and issues in Web Application Security, dWAF technology, PCI compliance and data protection.
Archives
February 2010

M T W T F S S

1 2 3 4 5 6 7

8 9 10 11 12 13 14

15 16 17 18 19 20 21

22 23 24 25 26 27 28

« Jan Mar »

RSS

Subscribe in a Reader
Twitter

@hyperguard
Cloudbook Contributor

Alex Meisel
Recent Posts
Blogroll
Tags
Amazon Amazon Web Services anti-phishing Application Secuirty AppSecDC authentication certified ethical hacker challenges cloud Cloud Applications cloud computing cloud comuting cloud security Cross-site scripting CSA Dark Reading developers dWAF Forrester GoGrid Highlights HTTP Hyperguard hyperguard SaaS infrastructure set-up input validation LinkedIn OWASP Passwords PCI DSS phishing Risk RockYou RSA SaaS scalability Scanner secure communication security breach software development SQL injection Top 10 user management WAF Web Application Web Application Security web vulnerabilities white paper

CSA and Use Cases

Posted by hyperguard on February 5, 2010

art of defence’s Alex Meisel and Georg Hess contributed to the recent Cloud Security Alliance paper—Security Guidance for Critical Areas of Focus in Cloud Computing v2. The CTO and CEO are excited to have helped write the application security domain (no. 13).

Application Security (Domain no. 13) Premise:

Cloud environments — by virtue of their flexibility, openness, and often public availability — challenge many fundamental assumptions about application security. Some of these assumptions are well understood; however many are not. This section is intended to document how Cloud Computing influences security over the lifetime of an application — from design to operations to ultimate decommissioning. This guidance is for all stakeholders — including application designers, security professionals, operations personnel, and technical management — on how to best mitigate risk and manage assurance within Cloud Computing applications.

At RSA, the company will be extending these thoughts, along with the dWAF (distributed web application firewall) concept, as use cases. These use cases will include practical applications that companies deploy for SaaS, PaaS and IaaS. Stay tuned for more details and a download link!

Follow this discussion on twitter @hyperguard

This entry was posted on February 5, 2010 at 4:46 pm and is filed under Post. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a comment Cancel reply

« Weekly Industry Round-up, Week of 2/1

U.S. the World’s Dirtiest Web-Hosting Country? »