https://community.isc2.org/t5/Tech-Talk/IARPA-s-vision-for-High-ClaaS-Cloud-Security/m-p/20657#M1050 <P>The next big idea coming out of the USA's IARPA program is "<A href="https://gcn.com/articles/2019/03/29/iarpa-high-claas.aspx" target="_blank" rel="noopener">High CLaaS</A>" - classified as a service. The big challenge is to provide a security specification for&nbsp;<STRONG>isolation</STRONG> and <STRONG>custody</STRONG>&nbsp;that can be measured by CSPs when providing a service. IARPA is suggesting to create isolation boundaries around server nodes using Bare metal as a service (BMaaS). Oracle, IBM, and AWS already provide BMaaS but what remains to be seen from IARPA is how they plan to measure isolation. Thoughts?</P> Mon, 01 Apr 2019 16:24:37 GMT AppDefects 2019-04-01T16:24:37Z https://community.isc2.org/t5/Tech-Talk/IARPA-s-vision-for-High-ClaaS-Cloud-Security/m-p/20657#M1050 <P>The next big idea coming out of the USA's IARPA program is "<A href="https://gcn.com/articles/2019/03/29/iarpa-high-claas.aspx" target="_blank" rel="noopener">High CLaaS</A>" - classified as a service. The big challenge is to provide a security specification for&nbsp;<STRONG>isolation</STRONG> and <STRONG>custody</STRONG>&nbsp;that can be measured by CSPs when providing a service. IARPA is suggesting to create isolation boundaries around server nodes using Bare metal as a service (BMaaS). Oracle, IBM, and AWS already provide BMaaS but what remains to be seen from IARPA is how they plan to measure isolation. Thoughts?</P> Mon, 01 Apr 2019 16:24:37 GMT https://community.isc2.org/t5/Tech-Talk/IARPA-s-vision-for-High-ClaaS-Cloud-Security/m-p/20657#M1050 AppDefects 2019-04-01T16:24:37Z