REST Uneasy: Do we Need to Worry about OAuth 2.0?
Reading the IETF OAuth 2.0 authorization API specifications and generally investigating similar social login protocols over the past couple of months has been fascinating. While the journey is far from over, I’ve come far enough to gain perspective on the… Continue reading
Reviewing the new CSA Cloud Control Matrix
Having covered the Cloud Security Alliance (CSA) while at Gartner, I’ve kept track of their work on cloud security assessment criteria ever since. This week I got a request from Kari Walker and Jack Luciano to review their new… Continue reading