Cloud Computing on Ulitzer
Back in June, we released the very first security hardened virtual machine
images for the Amazon Web Services Elastic Compute Cloud (EC2) environment.
These original images were based upon the OpenSolaris 2008.11 release and
were configured in accordance with the guidelines published by Sun the Center
for Internet Security.
Since its initial release, we have provided an update to offer this image in
the European Region. In August, we took another step forward with the release
of a security-enhanced image based upon the OpenSolaris 2009.06 release.
This image went beyond just the simple hardening of its predecessor to add
functionality such as encrypted swap, non-executable stacks and auditing that
was enabled by default. With such a strong fo... (more)
As we come to the close of yet another week, I am reminded that this week was
different. Unlike most weeks, I was actually off from work, recovering from
surgery, and yet at the same time, several of my projects were living lives
of their own at CommunityOne West and Java One. Since I could not be there in
person to talk about this work, I figured the next best thing was to take a
few mo... (more)
First things first. I want to offer a big "Thank you" to the 1,000 or so
people who joined my webinar earlier this week on the topic of Cloud
Computing Security. I was completely amazed by the turnout and sincerely hope
that the talk was both entertaining and thought provoking! I also wanted to
thank Subra Kumaraswamy, Joel Weise, and Luc Wijns for their herculean
efforts answering the ... (more)
While the need for security and integrity is well-recognized, it is less
often well-implemented. Security assessments and industry reports regularly
show how sporadic and inconsistent security configurations become for
organizations both large and small. Published recommended security practices
and settings remain unused in many environments and existing, once secured,
deployments suffer... (more)
It is that time again! Work is kicking up over at the Center for Internet
Security to update the Solaris 10 security benchmark. As I have previously
covered, Sun has been working hand-in-hand with the Center for Internet
Security for more than six years to develop best-in-class security hardening
guidance for the Solaris operating system.
In recent years, the NSA and DISA have jumped in c... (more)
Glenn Brunette is a Distinguished Engineer and Chief Security Architect at Sun Microsystems. For over 15 years, he has designed and delivered security architectures and solutions supporting a wide array of global customers. Currently, he has focused his efforts on improving security for cloud computing and other highly dynamic and scalable architectures. 
Jeremy Geelan
Whitfield Diffie
Reuven Cohen
Werner Vogels
Elizabeth Scipione
Bob Snyder
Alf Pilgrim
Per Sjofors
Kirsten Lytsen
Data Recovery Services
Colin Armitage
