This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Cloud-10 Guidelines"
From OWASP
Vinaykbansal (talk | contribs) |
Vinaykbansal (talk | contribs) |
||
| Line 1: | Line 1: | ||
| + | |||
| + | |||
| + | == Guideline Document == | ||
| + | |||
1. Development / Environment Setting | 1. Development / Environment Setting | ||
| Line 30: | Line 34: | ||
| − | + | ||
| + | == Target Providers == | ||
| + | 1. Savvis - | ||
| + | 2. Amazon EC2 | ||
| + | 3. Google Apps | ||
Revision as of 14:08, 1 November 2011
Guideline Document
1. Development / Environment Setting
a) Developer Access
- Jump Server
- Multi factor Autch
- VPN/Cert based Authc
2. Architecture
- Tiering
- Communicaiton
- between zones
- within tiers
- ACLs
- AuthC/Identity
- Encryption
- WAF
3. Deployment and Testing
- Hardening
4. Operations
- Patching
Use Cases
- Deploying Third Party
- Building Your Own Application
Target Providers
1. Savvis - 2. Amazon EC2 3. Google Apps
