Vulnerability Scanning and Clouds: An Attempt to Move the Dialog On…
Much has been said about public IaaS providers that expressly forbid customers from running network scans against their cloud hosted infrastructure. Failure to comply with the Terms of Service can result in account suspension or termination (ouch!). This post is my attempt to suggest a way forward. I welcome your feedback…
As has been noted before, [...]
Previous Stories
- Stop the Madness! Cloud Onboarding Audits - An Open Question…
- No Country Left Behind: SUN UK CTO Pushes For UK Cloud Security Group
- The Cloud Security Alliance Needs You
- “A Cloud Security Ghost Story” @ Black Hat: Slides Now Available
- Avoid the Facepalm: Cloud Security vs. Security in the Cloud
- ENISA Cloud Risk Assessment: What Are Your Concerns about Cloud Computing?
- A Cloud Security Ghost Story at Black Hat Europe
- Announcing FACEMASK for Floating Amazon Cloud Environment
- Compliance as a Service: Does It Exist?
- Dissecting the EPIC Complaint against Google
- Cloud Ecosystem Map: Spot the Security Players
- Cloud Security Startups: Where For Art Thou?
- The UItimate Cloud Security Challenge: Spot the Cloud Security Evangelist!
- US Government Creates Cloud Computing Security Group
- IGT2008 World Cloud Computing Summit Videos Now Online
- What’s New in the Amazon Cloud?: Security Vulnerability in Amazon EC2 and SimpleDB Fixed (7.5 Months After Notification)
- Is Your Browser Leaving Your Cloud Assets Vulnerable?
- Podcast: Cloud Computing, Software Development, Testing and Security
- Biggest Cloud Challenge: Security
- Privacy In the Cloud: Show Me The Money
- Craig Balding to Speak at World Summit of Cloud Computing
- Assessing the Security Benefits of Cloud Computing
- Collaboration in the Cloud, Virtual Worlds and the Hacker Mindset
- Is Your Amazon Machine Image Vulnerable to SSH Spoofing Attacks?
- Interview on IMI Tech Talk / KFNX: Cloud Computing and Security
- Cloudsecurity.org Interviews Guido van Rossum: Google App Engine, Python and Security
- A Question of Integrity: To MD5 or Not to MD5
- Cloud Computing and Security For The Masses: Interview on NPR
- Your Turn At The Bar Again? Security Costs in a Pay Per Drink Cloud
- 12 Signs that Your Company is Already in the Cloud
- Cloud Stacks: Please Mind The Gap
- 5 Reasons Why IT Security People Shouldn’t Ignore Cloud Computing
- Security In The Cloud: Introducing Cloud Mashups
- Thin Client Security: Wise up!
- Cloud Computing Defined #1
- Where are the Security Dashboards for Cloud Services?
- Blog Launch
