Cybersecurity, Privacy, & AI

Trending Now
Agriculture Department Kicks Off $300M Palantir Deal on IT, National Security Work • Vercel Attack Fallout Expands to More Customers and Third-Party Systems • Seeing the Cyber in Economic Statecraft • Responding to a Data Breach: How to Preserve the Attorney-Client Privilege • NIST Cyber Center to Launch OT ‘Visibility’ Project
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on April 16, 2020 • Cyber

NIST Invites Comment on Guidance for Who Gets to Access What in the Cloud

NIST Invites Comment on Guidance for Who Gets to Access What in the Cloud

Blackboard | Shutterstock

Stakeholders have until May 15 to provide feedback to NIST on draft guidance for controlling how various users should be allowed to navigate within cloud computing environments.

The push to adopt cloud services has sometimes led to a misconception that cloud providers become responsible for securing sensitive data from hackers. Draft NIST Special Publication 800-210 refutes that contention, before delving into specific guidelines and recommendations on the cloud services federal agencies are encouraged to adopt. It presents cloud access control characteristics and a set of general access control guidance for cloud service models: IaaS (Infrastructure as a Service), PaaS (Platform as a Service), and SaaS (Software as a Service).

More at NextGov

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.

© PubKGroup 2024