A recent search on Amazon showed an amazing 1,460 titles on cloud computing. It is no secret that cloud computing is a technology that has arrived.
But with all the excitement around cloud computing, it is difficult to filter through the hype. For those looking to get a clear understanding of this monstrosity called cloud computing, To the Cloud: Cloud Powering an Enterprise provides the reader with a detailed overview of what cloud computing is, and what it is not.
While the book is authored by 3 technical Microsoft staffers; it is overall a vendor agnostic reference. Albeit the epilogue does use a case study of the Windows Azure cloud platform.
In fewer than 100 pages, the books 4 parts consist of sections on:
- Explore - understand the promise and challenges of cloud computing
- Envision - details how cloud computing can transform an organization
- Enable - details the necessary resources and skills for en effective cloud computing initiative
- Execute – creating the design, development and operation of cloud computing
While not specifically a security book, the authors note in chapter 3 that moving services to a public cloud means potentially increasing your business exposure to malicious attacks. I would take note that it is not a potential increase, rather a definite increase. The authors write that it is important to determine how well a cloud provider handles both technical and legal issues, in addition to other security requirements.
Chapter 4 notes the importance of a penetration test for any cloud-based application. It also stresses the need for comprehensive logging and monitoring.
For those looking for a succinct tactical introduction to cloud computing, To the Cloud: Cloud Powering an Enterprise is an excellent place to start.