I will be presenting the following Session in two weeks at VMworld Europe 2011:
Session ID: SEC1236
Title: Penetration Testing the Cloud
Twitter hashtag: #SEC1236
Track: Cloud Infrastructure: Security and Compliance
Day: Tuesday 09:00
Cloud computing is said to represent a fundamentally different approach to building IT environments. Lessons from common management tools and processes, which work with discrete processes across static computing stacks, often are not incorporated into the new virtual environments. Predictably, this causes gaps in security. This presentation shows where and how to test for weakness. You will also learn how to deploy controls and improve security when resources are pooled across multiple sources, provisioning and capacity are highly dynamic, and configurations are fluid
This is a repeat of the same session presented at VMworld in Las Vegas, which was scored overall at 4.63 (4.72 for effectiveness) out of 5.00 with nearly 500 in attendance.
Hope to see you there.