Esperienze e Certificazioni per la Sicurezza del Cloud Computing

Area Downloads

`

Vita Associativa

Statuto,pdf,Download

Informativa Privacy,pdf,Download
Informativa Cookie,pdf,Download

Modulo prima iscrizione socio individuale, pdf, Download

Modulo rinnovo iscrizione socio individuale, pdf, Download
Modulo iscrizione socio affiliato, pdf, Download

Regolamento Comitato Scientifico, pdf, Download

Dai Gruppi di Lavoro CSA Italy

Traduzione in italiano della “Cloud Security Guidance Ver. 2.1” (2011), pdf, Download
Documento di ricerca 2012 “Portabilità Interoperabilità Sicurezza Applicativa”, pdf, Download
Ebook Ricerca 2012 “Portabilità Interoperabilità Sicurezza Applicativa”, epub, Download
Documento di Ricerca 2012 Studio “Standard Contrattuali per il Cloud Computing”, pdf (ITA), Download
Documento di Ricerca 2012 Studio “Standard Contrattuali per il Cloud Computing”, pdf (ENG), Download

Traduzione in italiano del documento ENISA “Cloud Computing Benefits Risks and Recommandations for Information Security” (2012), pdf, Download

Traduzione in Inglese del Rapporto Clusit “ICT Security in Italy 2013”, pdf (ENG), Download

Documento di Ricerca 2013 “Data Breach: panoramica degli aspetti normativi ed ottica Cloud”, pdf, Download

Documento di Ricerca 2013 “BYOD: a next step forward for the IT revolution started with Cloud”, pdf (EN), Download

Documento di Ricerca 2014 “Responsabilità degli enti per i delitti informatici e trattamento illecito di dati in contesto Cloud Services”, pdf (IT), Download

Documento di Ricerca 2014 “CSA CCM v3.0 con SEZIONE Legge 231”, xls (ENG), Download

Documento di Ricerca 2015 “Servizi di pagamento via internet: il contesto normativo italiano per gli aspetti di sicurezza dei dati ed ipotesi di mapping rispetto ai controlli CSA CCM”, pdf (IT), Download

Norme ISO/IEC

Information technology — Security techniques — Information security management systems — Requirements, html, ISO/IEC 27001

Information technology — Security techniques — Code of practice for information security controls, html, ISO/IEC 27002

ITU-T Rec. Y.3500 – Information technology — Cloud computing — Overview and vocabulary, html, ISO/IEC 17788

ITU-T Rec. X.1631 – Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services, html, ISO/IEC 27017

Information technology — Security techniques — Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors, html, ISO/IEC 27018

Information technology — Security techniques — Information security in supplier relationships — Part 1: Overview and concepts, html,ISO/IEC 27036-1

Information technology — Security techniques — Information security in supplier relationships — Part 2: Requirements,html, ISO/IEC 27036-2

Information technology — Security techniques — Information security in supplier relationships — Part 3: Guidelines for information and communication technology supply chain security,html,ISO/IEC 27036-3

Information technology — Security techniques — Information security for supplier relationships — Part 4: Guidelines for security of cloud services, html, ISO/IEC 27036-4

Dai Gruppi di Lavoro CSA International

Tutte le Ricerche (+60 pubblicazioni),pdf, Download

WEBINAR (Brightalk),streaming, Collegati

Da ENISA

Cloud Security Guidance for SMEs (2015), pdf, Download

Cloud computing risk assessment (2009), pdf, Download
Assurance framework for cloud computing (2009),pdf,Download

Critical Cloud Computing-A CIIP perspective on cloud computing services (2013), pdf, Download

Procure Secure: A guide to monitoring of security service levels in cloud contracts (2012), pdf, Download

Incident Reporting for Cloud Computing (2013), pdf, Download

Survey and analysis of security parameters in cloud SLAs across the European public sector (2011), pdf, Download

Security and Resilience in Governemental Clouds (2011), pdf, Download

Good practice guide for Governmental clouds (2013), pdf, Download

Security framework for Governmental Clouds (2014), pdf, Download

Cloud Computing Certification (2015), pdf, Download

Dall’ UNIONE EUROPEA

EU Cloud Strategy (2012), pdf, Download

Unleashing the Potential of Cloud Computing in Europe (2012), pdf, Download

Trusted Cloud Europe (2014), pdf, Download

Sfruttare il potenziale del cloud computing in Europa (2012), pdf, Download

Da ETSI

Cloud Computing Standards (2013), pdf, Download

Da Agid (Agenzia per l’Italia Digitale)

Raccomandazioni e proposte sull’utilizzo del cloud computing nella Pubblica Amministrazione (2012), pdf, Download

Strategia per la crescita digitale 2014-2020, pdf, Download

Strategia per la banda ultralarga e crescita digitale, pdf, Download

Dal Garante per la protezione dei dati personali

CLOUD COMPUTING – Proteggere i dati per non cadere dalle nuvole (2012), pdf, Download

Working Party 196 Parere 05/2012 sul cloud computing (2012), pdf, Download

Parere del Garante sullo schema di ‘Linee-guida per il Disaster Recovery delle pubbliche amministrazioni’ – 4 luglio 2013, pdf, Download

Resolution on Cloud Computing – 34th International Conference of Data Protection and Privacy (2012), pdf, Download

Dal DISA (Defence Information Systems Agency – USA)

DoD Instruction 8500.01 Cybersecurity

Chairman of the Joint Chiefs of Staff Manual 6510.01B Cyber Incident Handling Program

Executive Order 13526 Classified National Security Information

DoD Cloud Computing Security Requirements Guide (SRG)

Security Technical Implementation Guide (STIG)

Official DoD Issuances/Instructions

Federal Risk and Authorization Management Program (FedRAMP)

NIST Special Publications

CNSSI 1253: Security Categorization and Controls Selection for National Security Systems

CNSSI 4009: National Information Assurance (IA) Glossary

NIST SP 800-37 Revision 1: Guide for Applying the Risk Management Framework to Federal Information Systems

NIST SP 800-59: Guideline for Identifying an Information System as a National Security System

NIST SP 800-66 Revision 1: An Introductory Resource Guide for Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule

NIST SP 800-88 Revision 1: Guidelines for Media Sanitization

NIST SP 800-122: Guide to Protecting the Confidentiality of Personally Identifiable Information (PII)

NIST SP 800-144: Guidelines on Security and Privacy in Public Cloud Computing

NIST SP 800-145: Definition of Cloud Computing

NIST SP 800-146: Cloud Computing Synopsis & Recommendations

NIST SP 800-53: Security and Privacy Controls for Federal Information Systems and Organizations

NIST SP 500-292: Cloud Computing Reference Architecture

CIO Council & Chief Acquisition Officers Council: Creating Effective Cloud Computing Contracts for the Federal Government