Shows & Panels
- The 2014 Big Picture on Cyber Security
- AFCEA Answers
- Ask the CIO
- Connected Government
- Consolidating Mission-critical Systems
- Constituent Servicing
- Continuous Monitoring: Tools and Techniques for Trustworthy Government IT
- The Data Privacy Imperative: Safeguarding Sensitive Data
- Eliminating the Pitfalls: Steps to Virtualization in Government
- Federal Executive Forum
- Federal Tech Talk
- Government Cloud Brokerage: Who, What, When, Where, Why?
- Government Mobility
- Mission-critical Apps in the Cloud
- Mobile Device Management
- The Modern Federal Threat Landscape
- The Path from Legacy Systems
- Understanding the Intersection of Customer Service and Security in the Cloud
Shows & Panels
NIST releases cloud computing standards
Wednesday - 2/2/2011, 3:53pm EST
Federal News Radio
The National Institute of Standards and Technology (NIST) issued two draft documents on cloud computing standards open for public comment.
The guidelines follow Federal Chief Information Officer Vivek Kundra's call for faster adoption of cloud computing in the government. Also, the Office of Management and Budget told agencies in December to identify three "must move" technologies that will go to the cloud by March and move one of them by the end of 2011.
Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction.
The document includes a list of cloud characteristics and deployment models.
The second document - Guidelines on Security and Privacy in Public Cloud Computing - lays out the standards for public cloud computing, including:
- Carefully plan the security and privacy aspects of cloud computing solutions before engaging them.
- Understand the public cloud computing environment offered by the cloud provider and ensure that a cloud computing solution satisfies organizational security and privacy requirements.
- Ensure that the client-side computing environment meets organization security and privacy requirements for cloud computing.
- Maintain accountability over the privacy and security of data and applications implemented and deployed in public cloud computing environments.
NIST also launched a new website that explains the department's cloud computing program and includes cloud events.