NIST Provides a Balanced Approach to the Cloud

The Federal government has just published it's first guidance on how to design and manage cloud computing.  They provide 10 requirements for cloud initiatives.  It's a well balanced document that looks at security as well as protections for the cloud service providers and the businesses who use them.  The guidance covers categories of accessibility, interoperability, performance, portability, and security technology.

The requirements push for setting the standards high for security and clear and consistent guidance in developing service agreements, good quality metrics and reliability.  In reality, this is just the guidance that provides the roadmap for where cloud computing should be implemented from the viewpoint of the federal government.  NIST is an agency of the Department of Commerce, so they are focused on both business interests as well as protecting businesses.  There are at least 3 more publications to be written and revisions of existing governance in the works.

NIST seems to be one government agency that is actually helpful.

McKendrick, J. (2014, October 25). NIST puts a sharper point on cloud computing | ZDNet [Web log post]. Retrieved from http://www.zdnet.com/nist-puts-a-sharper-point-on-cloud-computing-7000034990/

National Institute of Standards and Technology. (2014). US Government Cloud Computing Technology Roadmap Volume I: High-Priority Requirements to Further USG Agency Cloud Computing Adoption. Retrieved from http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.500-293.pdf