TRENDING:

NIST Issues Draft of Cloud Guide

Public Comment Sought on Special Publication GovInfoSecurity.comMay 16, 2011    
NIST Issues Draft of Cloud Guide
The National Institute of Standards and Technology has issued a draft of its most complete guide on cloud computing, and is seeking public suggestions on how to improve the document.

A draft of Special Publication 800-146, Cloud Computing Synopsis and Recommendations, provides definitions of cloud computing technologies as well as practical information for decision makers interested in moving to the cloud.

Cloud computing is a major initiative under Federal Chief Information Officer Vivek Kundra, who tasked NIST to lead federal efforts on standards for data portability, cloud interoperability and security. Cloud computing got a boost last week from the White House when the Obama administration proposed legislation to prevent states from requiring companies to build their data centers in that state, except where expressly authorized by federal law, so not to cripple a new industry by protectionist measures (see White House Unveils Cybersecurity Legislative Agenda).

NIST said the new guide reviews its definition of cloud computing, provides an overview of cloud environments with detailed discussions of each and then provides a section on each of the main cloud environments: software-as-a-service, platform-as-a-service and infrastructure-as-a-service.

Each section of the guidance looks at the environment's scope, its capabilities, benefits and known issues and concerns. The publication also provides information on how organizations should consider the relative opportunities and risks of cloud computing. One section covers computing performance, reliability, economics, compliance and data and applications security. Another section discusses general recommendations. Appendices cover typical costs of cloud computing, roles and responsibilities, acronyms, terminology and resources for further investigation.

Comments can be e-mailed to NIST to 800-146comments@nist.gov by June 13.

Previous
Apple, Facebook, Google Before Senate Panel
Next
The CISO's 5 Best Friends

About the Author



Around the Network

Evolving Threats Facing Robotic and Other Medical Gear
Evolving Threats Facing Robotic and Other Medical Gear
Transforming a Cyber Program in the Aftermath of an Attack
Transforming a Cyber Program in the Aftermath of an Attack
Protecting Medical Devices Against Future Cyberthreats
Protecting Medical Devices Against Future Cyberthreats
Safeguarding Critical OT and IoT Gear Used in Healthcare
Safeguarding Critical OT and IoT Gear Used in Healthcare
Is It Generative AI's Fault, or Do We Blame Human Beings?
Is It Generative AI's Fault, or Do We Blame Human Beings?
Properly Vetting AI Before It's Deployed in Healthcare
Properly Vetting AI Before It's Deployed in Healthcare
Identity Security and How to Reduce Risk During M&A
Identity Security and How to Reduce Risk During M&A
Medical Device Cyberthreat Modeling: Top Considerations
Medical Device Cyberthreat Modeling: Top Considerations
How 'Security by Default' Boosts Health Sector Cybersecurity
How 'Security by Default' Boosts Health Sector Cybersecurity
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
How the NIST CSF 2.0 Can Help Healthcare Sector Firms

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.