Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

SP 1800-19 (DRAFT)

Trusted Cloud: Security Practice Guide for VMware Hybrid Cloud Infrastructure as a Service (IaaS) Environments

Date Published: August 2018
Comments Due: September 30, 2018 (public comment period is CLOSED)
Email Questions to:

Planning Note (8/24/2018): 8/24/18 - 9/30/18: Comment Period for Volume A: Executive Summary [Prelim. Draft 1]


Donna Dodson (NIST), Daniel Carroll (Dell/EMC), Gina Scinta (Gemalto), Hemma Prafullchandra (HyTrust), Harmeet Singh (IBM), Raghuram Yeluri (Intel), Tim Shea (RSA), Carlos Phoenix (VMware)


The National Cybersecurity Center of Excellence (NCCoE) at NIST recognizes the need to address security and privacy challenges for the use of shared cloud services in hybrid cloud architectures, and has launched this project. This project is using commercially available technologies to develop a cybersecurity reference design that can be implemented to increase security and privacy for cloud workloads on hybrid cloud platforms.

This project will demonstrate how the implementation and use of trusted compute pools not only will provide assurance that workloads in the cloud are running on trusted hardware and are in a trusted geolocation, but also will improve the protections for the data within workloads and flowing between workloads. This project will result in a NIST Cybersecurity Practice Guide - a publicly available description of the solution and practical steps needed to implement a cybersecurity reference design that addresses this challenge.



cloud computing; cybersecurity; infrastructure as a service (IaaS); security and privacy policies; virtualization
Control Families

None selected


SP 1800-19A (Preliminary Draft 1)

Supplemental Material:
Project Homepage (other)


Security and Privacy
audit & accountability; program management

cloud & virtualization