Welcome to the CSA APAC Cloud Codebook!
A monthly newsletter, and your source for the most up-to-date news on CSA APAC Region.
Corporate Members Spotlight
Check out what our corporate members are doing!
Check out what our corporate members are doing!
Meeting with Infosys (India)
CSA APAC team visited the campus of Infosys in Bangalore on 5th June 2016. CSA's Executive Vice President of Asia Pacific, Aloysius Cheang, and Research Analyst, Ekta Mishra met with Avinash Prasad, Senior Director of Enterprise Security and Srilatha Nellakra, Enterprise Security to give an overview of CSA initiatives. They also discussed about upcoming events such as Government Cyber Security Forum and CSA APAC Congress. Infosys will be scheduling a webinar with CSA on Standardization and visibility of security controls in Hybrid Cloud environments at the end of August. |
Meeting with Wipro (India)
CSA's Executive Vice President of Asia Pacific, Aloysius Cheang, and Research Analyst, Ekta Mishra met with Sateesh Muthu, Consulting Partner and Baiju Varghese, Consultant for Industrial Risk Management on 6th June in Bangalore. CSA shared various collaboration what CSA is taking up in India with DSCI, CCICI at National level and how Wipro should contribute in various CSA research projects. Wipro has also been invited for Call for Papers for the upcoming CSA APAC Congress in Bangalore. |
Meeting with Tata Consultancy Services (India)
CSA's Executive Vice President of Asia Pacific, Aloysius Cheang, and Research Analyst, Ekta Mishra met with the people from Banking and Finance, Enterprise Security & Risk Management and the project management team on 6th June in Bangalore. CSA APAC team shared with TCS CSA's background, strategies and future plans. |
CSA APAC Research Activities
Check out our research activities!
Check out our research activities!
Cloud Data Center Security Working Group
Open peer review has been completed for the CSA Cloud Data Center Security Working Group. We will be commencing on the work to create a security guidance document for Cloud Data Center. If you are interested in getting involved with the Cloud Data Center Security working group, please register on Cloud Data Center Security microsite registration page. We appreciate your assistance. Thank you in advance for your time and contribution. |
Mobile Application Security Testing Release Its White Paper
The Mobile Application Security Testing (MAST) Initiative is a research which aims to help organizations and individuals reduce the possible risk exposures and security threat in using mobile applications. MAST aims define a framework for secure mobile application development, achieving privacy and security by design. Implementation of MAST will result in clearly articulated recommendations and best practices in the use of mobile applications.
Mobile application security testing and vetting processes utilized through MAST involve both static and dynamic analyses to evaluate security vulnerabilities of mobile applications for platforms such as Android, iOS and Windows. These processes cover permissions, exposed communications, potentially dangerous functionality, application collusion, obfuscation, excessive power consumption and traditional software vulnerabilities. It also covers internal communications such as debug flag and activities and external communications such as GPS, NFC access as well as checking the links that are written in the source code. In addition to security testing and vetting, the initiative has also proposed processes and procedures for security incidence response.
The use of mobile applications has become unavoidable, almost a necessity, in today’s world. More people are starting to question the security of mobile applications and it’s about time that you take a look at what the Cloud Security Alliance has to say about mobile application security!
To access the full report visit the download page at: https://cloudsecurityalliance.org/download/mobile-application-security-testing/
Mobile application security testing and vetting processes utilized through MAST involve both static and dynamic analyses to evaluate security vulnerabilities of mobile applications for platforms such as Android, iOS and Windows. These processes cover permissions, exposed communications, potentially dangerous functionality, application collusion, obfuscation, excessive power consumption and traditional software vulnerabilities. It also covers internal communications such as debug flag and activities and external communications such as GPS, NFC access as well as checking the links that are written in the source code. In addition to security testing and vetting, the initiative has also proposed processes and procedures for security incidence response.
The use of mobile applications has become unavoidable, almost a necessity, in today’s world. More people are starting to question the security of mobile applications and it’s about time that you take a look at what the Cloud Security Alliance has to say about mobile application security!
To access the full report visit the download page at: https://cloudsecurityalliance.org/download/mobile-application-security-testing/
CSA Events and Activities
The latest updates about CSA APAC events and activities.
The latest updates about CSA APAC events and activities.
CSA APAC Congress 2016, Open for Call for Papers
Date: November 21-22, 2016 - Bangalore, India Theme: Emerging from Dark Cloud Arising View here for more topics of Interest |
CSA Supported Conference
The latest updates about CSA APAC supported conferences
The latest updates about CSA APAC supported conferences
CCICI - NIST Workshop, 6-8 June, Bangalore
CCICI-NIST workshop was a 3 day event. Cloud Security Alliance hosted a dinner on the first day where CSA's Executive Vice President of Asia Pacific, Aloysius Cheang, presented on ‘Key Initiatives for 2016’ providing CSA's roadmap of new research working groups. It was followed by a presentation on ‘Application Security Fast Screening and Classification’ by Keng Lee, COO of Tanosecure. On the second day, CEO & Founder of CSA, Jim Reavis presented a keynote on ‘The Enterprise Mandate for the Global Cloud Security’. |
Chapter Spotlight
Featured chapter of the month
Featured chapter of the month
Hong Kong & Macau Chapter
Established in 2014 by a group of enthusiastic IT professionals who are keen to promote the use of best practices for providing security assurance within cloud computing, the Hong Kong & Macau chapter has been focusing its efforts in three key areas:
Industry Standards: Work closely with the government and related organizations to help establishing an industry standard on cloud security.
Professional Education: Helping IT security professionals to develop their knowledge and skills through workshops and professional trainings including CCSK and CCSP.
Awareness: Promote the awareness of cloud security to a broad audience through public events, public relations and publication.
Industry Standards: Work closely with the government and related organizations to help establishing an industry standard on cloud security.
Professional Education: Helping IT security professionals to develop their knowledge and skills through workshops and professional trainings including CCSK and CCSP.
Awareness: Promote the awareness of cloud security to a broad audience through public events, public relations and publication.
APAC Volunteer Leadership Spotlight
Claudius Lam
A marketing and communications professional, Claudius Lam has been involved in information technology for more than 25 years. He is now the marketing manager for Trend Micro, responsible for addressing the security challenges of enterprises by connecting market problems with Trend Micro’s solution and service offerings. Claudius assumed the role of Chairman at Cloud Security Alliance Hong Kong & Macau Chapter in 2015 and is dedicated to fulfilling CSA’s mission of promoting the use of best practices for providing security assurance within cloud computing. |
Upcoming Events
Come and Join Us!
Come and Join Us!
- CSA APAC Events
- 4th CSA ASEAN Summit, September, Bangkok, Thailand
- Inaugural CSA Government Cybersecurity Forum, 12 October, Singapore
- 4th CSA APAC Congress, 21 - 22 November, Bangalore, India
- CSA APAC-Supported Events
- Innovating Healthcare Asia Pacific 2016, 20 - 21 July, Singapore
- (ISC)2 Security Congress, 25 - 26 July, Bangkok, Thailand
- CloudSec 2016, 11 August, Chengdu, China
- RAISE Forum, 11 August, Singapore
- CloudSec 2016, 18 August, Mumbai, India
- CloudSec 2016, 23 August, Singapore
- Symposium on Risk Management, 25 August, Hong Kong
- CloudSec 2016, 30 August, Hong Kong
- CloudSec 2016, 8 September, Seoul, Korea
- DatacenterDynamics Converged, 13 - 18 September, Singapore
- DatacenterDynamics Converged, 9 November, Hong Kong
- Data Privacy Asia 2016, 9 - 11 November, Singapore
Contact Us
Co-Editors for this Newsletter:
Mickey Law - Research Analyst
Mobile: +65 8245 6352
Email: [email protected]
Shuqi Huang - Research Analyst
Mobile: +65 9489 9911
Email: [email protected]
If you are interested in utilising the CSA Cloud Codebook for marketing purposes, please contact the co-editors.
If you are interested in getting involved with the Cloud Security Alliance regarding:
Invoicing and payment, please contact:
Ayuni, [email protected]
Chapter Management, please contact:
Ekta Mishra, [email protected]
Corporate Membership, please contact:
Anthony Lim, [email protected]
CSA APAC Event Information, Including Sponsorship and Chapter Study Trips, please contact:
Shuqi Huang, [email protected]
Ekta Mishra, [email protected]
Research, please contact:
Dr. Ryan Ko, [email protected]
Mickey Law, [email protected]
CCSK and Educational, please contact:
Lynne Yang, [email protected]
CSA STAR, please contact:
Shuqi Huang, [email protected]
Standardisation, please contact:
Mickey Law, [email protected] and/or either of the
CSA International Council co-chairs
Eric Hibbard, [email protected] or
Andreas Fuchsberger, [email protected]
Alternatively, you can get in touch with your friendly Local CSA chapter.
Official Website: www.cloudsecurityalliance.org
Facebook: Cloud Security Alliance Asia Pacific
LinkedIn: Cloud Security Alliance
Twitter: @cloudsa_apac
WeChat: csa_china
Scan the QR code below in WeChat to subscribe our CSA WeChat Official Account.
Mickey Law - Research Analyst
Mobile: +65 8245 6352
Email: [email protected]
Shuqi Huang - Research Analyst
Mobile: +65 9489 9911
Email: [email protected]
If you are interested in utilising the CSA Cloud Codebook for marketing purposes, please contact the co-editors.
If you are interested in getting involved with the Cloud Security Alliance regarding:
Invoicing and payment, please contact:
Ayuni, [email protected]
Chapter Management, please contact:
Ekta Mishra, [email protected]
Corporate Membership, please contact:
Anthony Lim, [email protected]
CSA APAC Event Information, Including Sponsorship and Chapter Study Trips, please contact:
Shuqi Huang, [email protected]
Ekta Mishra, [email protected]
Research, please contact:
Dr. Ryan Ko, [email protected]
Mickey Law, [email protected]
CCSK and Educational, please contact:
Lynne Yang, [email protected]
CSA STAR, please contact:
Shuqi Huang, [email protected]
Standardisation, please contact:
Mickey Law, [email protected] and/or either of the
CSA International Council co-chairs
Eric Hibbard, [email protected] or
Andreas Fuchsberger, [email protected]
Alternatively, you can get in touch with your friendly Local CSA chapter.
Official Website: www.cloudsecurityalliance.org
Facebook: Cloud Security Alliance Asia Pacific
LinkedIn: Cloud Security Alliance
Twitter: @cloudsa_apac
WeChat: csa_china
Scan the QR code below in WeChat to subscribe our CSA WeChat Official Account.