Episode 7: Creating Trust in Cloud

Episode 7 September 02, 2019 00:36:26
Episode 7: Creating Trust in Cloud
SilverLining IL
Episode 7: Creating Trust in Cloud

Sep 02 2019 | 00:36:26

/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Damir Savanović

Guest title: Senior researcher

Company: Cloud Security Alliance

Abstract

Creating trust is one of the major challenges for cloud providers and consumers, without trust customers will not be able to move workloads into cloud environments, but trust is a very elusive term that is hard to achieve. In  this episode we talk with Damir Savanović from the Cloud Security Alliance on how cloud providers and consumers can use certifications for increasing trust and how is CSA preparing to the new requirements of continuous monitoring that are arriving with the new EU cyber laws.

Timing

0:00

Intro and introducing our guest and overview of Damir activities in the area of cloud security

5:40

Introducing Cloud Security Alliance activities and major projects (STAR and CCSK)

9.17 

The true meaning of trust in cloud computing. Using attestation and certification for establishing trust

14:50  

The difference between certification and attestation and the effect of the new EU cybersecurity law on compliance

17.50

Understanding CSA STAR methodology from self assessment to certification or attestation and continuous monitoring

24.20

Behind the scenes of continuous monitoring - the CSA STAR methodology 

32.00

Summary and conclusions

Other Episodes

Episode 37

April 13, 2021 00:27:16
Episode Cover

SilverLining Episode 37: Software Package Dependencies Attacks

Attendees Guest: Tzachi Zornstain Guest Title: Co-Founder & CEO, Dustico Topic: Software Package Dependencies Attacks Abstract Supply chain and software dependencies attacks are becoming...

Listen

Episode 29

November 25, 2020 00:36:09
Episode Cover

Episode 29: Cloud Identity Governance - understanding challenges

Sponsored By: Attendees Guest: Arick Goomanovsky Guest title: Co-Founder & Chief Business Officer Company: Ermetic Abstract In cloud platforms, identity and permissions are the...

Listen

Episode 12

December 10, 2019 00:35:29
Episode Cover

Episode 12: Diving Into Authorization And Policy Bases Access Controls

Attendees Guest: Tsachi Lutaty Guest title: R&D manager Company: PlainID Abstract In the past years we have reached important progress in authentication. Multi factor...

Listen