CSA Research Artifacts
Whitepapers, Reports and Other Resources
Browse Research Artifacts
 | CCM v3.0 - Chinese Translation The Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) provides fundamental security principles to guide cloud vendors and cloud customers seeking to ... Request to download |
 | Security Guidance for Critical Areas of Focus in Cloud Computing v4.0 (Spanish Translation) Con este documento, nuestro objetivo es proporcionar tanto orientación como inspiración para respaldar los objetivos comerciales, mientras se gestionan y m... Request to download |
 | Using BlockChain Technology to Secure the Internet of Things - Japanese Translation 本書「IoT セキュリティのためのブロックチェーン技術の活用」は、Cloud Security Alliance (CSA)が公開して いる「Using Blockchain Technology to Secure the Internet of Things」の日本語訳です。本書は、CSA ジャパ ンが、CS... Request to download |
 | IoT Firmware Update Processes The traditional approach to updating software for IT assets involves analysis, staging and distribution of the update—a process that usually occurs during of... Request to download |
 | Code of Conduct for GDPR Compliance - Japanese Translation 説明: 本書「GDPR 準拠の為の行動規範」は、Cloud Security Alliance (CSA)が公開している「CODE OF CONDUCT FOR GDPR COMPLIANCE」の日本語訳および一般社団法人日本クラウドセキュリティアライア ンス(CSAジャパン)が解説を加えたも... Request to download |
 | Top Threats to Cloud Computing: Deep Dive This case study attempts to connect all the dots when it comes to security analysis by using nine anecdotes cited in the Top Threats for its foundation. Each... Request to download |
 | OWASP Secure Medical Devices Deployment Standard With the explosion of botnets and other malware that now target IoT devices (of which medical devices can be considered a subtype) the need for security-min... Request to download |
 | Security Position Paper Network Function Virtualization - Chinese Translation 近五年来,随着云基础设施的能力和复杂性飞速演进,安全风险也相应上升。 虽然虚拟化已不是一个很新的概念,但几乎任何人都可以对计算、存储、网络和应 用程序等资源进行虚拟化的想法会增加安全威胁的影响和速度。同时,全球地缘政 治格局已从由机遇驱动的网络攻击转变为资金充足的国家行动 Request to download |
 | Using BlockChain Technology to Secure the Internet of Things - Chinese Translation 在过去的四年中,技术专家、首席数字官、营销经理、记者、博客作者和研究机构讨论 并 推广了一种新的分布式模型,将区块链技术应用于安全事务处理和存储。国际数据公司 IDC FutureScape 预测,到 2020 年,全球 20%的贸易融资将纳入区块链。 Request to download |
 | Security Guidance v4.0 - Chinese Translation 欢迎来到云安全联盟关于云计算关键领域安全指南的第四个版本。云计算的兴起是一项不 断发展的技术,它带来了许多机遇和挑战。通过这个文档,我们的目标是提供指导和灵感来支 持业务目标,同时管理和减轻采用云计算技术相关的风险。 Request to download |
 | GEAB State of the Cloud 2018 - Chinese Translation 云安全联盟全球企业顾问委员会成立于2016年,是由十多位行业的大型跨国公 司的顶尖专家组成的代表团队。该委员会的成立是为了表达大型IT终端用户的观点, 并融合云计算使用者信息安全相关的观点。 Request to download |
 | CSA Code of Conduct for GDPR Compliance - Chinese Translation 云安全联盟 CSA 近期发布了 CoC for GDPR Compliance(CSA GDPR 合规行为准则),旨 在为云服务提供商(CSP)、云消费者、及相关企业提供 GDPR 合规解决方案,并提供涉及云服 务提供商应提交的关于数据保护级别的透明性准则。这个准则为各种规模的客户提供工具来评 估其个人数据... Request to download |
 | Building a Foundation for Successful Cyber Threat Intelligence Exchange - Chinese Translation 描述: 当前网络攻击的频率和复杂程度在不断提高。攻击者可能是个人,也可能是资源丰富、 组织严密的团伙。面对这样的威胁,企业如果只关注内部防护措施,可能建成最后被绕过 “马其顿防线”;如果只依赖自身的情报能力,可能面临攻防不对等的窘境。为了解决上述问 题,网络威胁情报(CTI... Request to download |
 | CCM Mapping Methodology Description: The Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) provides fundamental security principles to guide cloud vendor... Request to download |
 | Firmware Integrity in the Cloud Data Center Description: This paper presents the point of view from key stakeholders in datacenter development regarding how to build cloud infrastru... Request to download |
 | Software Defined Perimeter Glossary Description: The Software Defined Perimeter (SDP) Glossary is a reference document that brings together SDP related terms and definitions... Request to download |
 | The State of Post-Quantum Cryptography Description: Most people pay little attention to the lock icon on their browser’s address bar that signifies a secure connection called H... Request to download |
 | The Treacherous 12 – Top Threats to Cloud Computing + Industry Insights - Japanese Translation 誰も予測できなかった速さで、クラウドコンピューティングはビジネスや政府に等しく変容を迫り、そ して新たなセキュリティ課題をもたらしている。クラウドのサービスモデルが開発されることで、ビジ ネスを支える技術はかつてないほど効率性の高いものになった。サーバを保有する発想からサービ ス利用ベースの思考への転換は、IT ... Request to download |
| Justify Your Investment in Cloud Security Training The Certificate of Cloud Security Knowledge (CCSK) Foundation class provides students a comprehensive review of cloud security fundamentals and a detailed de... Request to download |
 | A Day Without Safe Cryptography Description: Over the past fifty years, the digital age has sparked the creation of a remarkable infrastructure through which a nearly in... Request to download |