U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

SP 1800-19 (Draft)

Trusted Cloud: Security Practice Guide for VMware Hybrid Cloud Infrastructure as a Service (IaaS) Environments (Preliminary Draft)

Date Published: April 2020
Comments Due: May 11, 2020 (public comment period is CLOSED)
Email Questions to: trusted-cloud-nccoe@nist.gov

Planning Note (4/13/2020): 4/13/20 - 5/11/20: Comment Period for Volume C: How-to Guides [Prelim. Draft 1] This preliminary draft is stable but has some gaps in its content that will be addressed in the next draft.

Author(s)

Michael Bartock (NIST), Karen Scarfone (NIST), Murugiah Souppaya (NIST), Harmeet Singh (IBM), Rajeev Ghandi (IBM), Laura Storey (IBM), Anthony Dukes (VMware), Jeff Haskins (VMware), Carlos Phoenix (VMware), Brenda Swarts (VMware)

Announcement

The National Cybersecurity Center of Excellence (NCCoE) at NIST recognizes the need to address security and privacy challenges for the use of shared cloud services in hybrid cloud architectures, and has launched this project. This project is using commercially available technologies to develop a cybersecurity reference design that can be implemented to increase security and privacy for cloud workloads on hybrid cloud platforms.

This project will demonstrate how the implementation and use of trusted compute pools not only will provide assurance that workloads in the cloud are running on trusted hardware and are in a trusted geolocation, but also will improve the protections for the data within workloads and flowing between workloads. This project will result in a NIST Cybersecurity Practice Guide - a publicly available description of the solution and practical steps needed to implement a cybersecurity reference design that addresses this challenge.

Abstract

Keywords

cybersecurity; compliance; privacy; cloud technology; trusted compute pools
Control Families

None selected

Documentation

Publication:
Prelim. Draft SP 1800-19

Supplemental Material:
Project homepage (web)

Document History:
04/13/20: SP 1800-19 (Draft)

Topics

Security and Privacy
audit & accountability; program management

Technologies
cloud & virtualization