Archive for category cloud security

Why did they hack that site?… LivingSocial

According to LivingSocial, they were hacked a couple of weeks ago. Let me repeat that a site that sells deals to consumers… all kinds of deals from different merchants to different types of customers was hacked. You can shop for clothes, vacations, hair cuts, activities, just about anything. And they were hacked! I sent out […]

Leave a comment

VMworld 2013 – Voting and HoL

This will be my first year at VMworld as a VMworld employee. I am excited about the experience and wondering if it will feel any different. Technically I will be at VMworld because of the Hands on Labs. I through my hat into the ring because that’s just what I do. Right now it looks […]

Leave a comment

vCAC and Multi-Tenancy

Often times for me multi-tenancy is a topic of discussion. The customer wants to build an environment, an apartment building that many people reside in and yet everyone thinks they live there alone. None of the residents are quite sure how big the house is. All they know is that they have their own door […]

3 Comments

VMware vSphere Security 5.1

Starting this new role at VMware, I have found some amazing documents and I wanted to make sure they got to you. One of these documents is vSphere Security (link provided below via the image). This document is focused on securing VMware vCenter Server and VMware ESXi for 5.1. This document is great and since […]

2 Comments

Facebook Security

This post was composed in March 2013. I wanted to make this clear because I am pretty sure that Facebook will change their security settings again and this will post will be completely out of date. You see Facebook is now allowing codes to be used when accessing your account. We all know that passwords […]

, , ,

Leave a comment

NIST Interagency Report 7904 – Trusted Geolocation in the Cloud

I can’t tell you how excited I am that my name is on this NIST document. I was working with my wonderful friend Tarik without knowing that this is what it would turn in to. Now let’s talk about it… The abstract for the document : This publication explains selected security challenges involving Infrastructure as a […]

Leave a comment

Security vSpecialist June 2012 Newsletter

Within the larger EMC vSpecialist team we have individual focus groups. The focus group that I am a part of is the security focus group. Shocking I know. Each month we try to get out a newsletter that gets sent to all vSpecialists. This newsletter identifies key events that have happened in the news, important […]

Leave a comment

FedRAMP : Cloud Controls to Manage Risk

Just like I did for FISMA, I wanted to review the Federal Risk and Authorization Management Program Security Controls (FedRAMP) current release and provide you with my view of it. They indicate the purpose of the document is to “list the security controls and corresponding enhancements that Federal Agencies and Cloud Service Providers (CSP) must […]

Leave a comment

NIST SP800-144 “Guidelines on Security and Privacy in Public Cloud Computing” – A Relationship Manual

Participating in a public cloud means that there are two independent parties involved. When two parties are involved, a relationship is formed. Just like every kind of relationship… it is hard. Each party has their own expectations and often times these expectations are not met and feelings get hurt. There are arguments and frustrations and […]

, , , ,

2 Comments

Intel TXT Capabilities – I’m Loving It

Recently EMC and Intel paired up on a webcast to talk about the relationship between the two companies… they provided a new proof of concept. As much as I love this relationship and enjoyed the presentation ( I have included them below ), the capability that I am most interested in is the Intel Trusted […]

, , , ,

3 Comments