CheatSheetSeries icon indicating copy to clipboard operation
CheatSheetSeries copied to clipboard
verified publisher icon OWASP

Update: Secure_Cloud_Architecture Cheat Sheet

Open Josh-Beck opened this issue 2 years ago • 2 comments

What is missing or needs to be updated?

The current sheet doesn't discuss the Shared Responsibility model.

How should this be resolved?

A shared security model basics section and an intro into self-managed vs managed tooling should be provided before the Self-managed tooling maintenance section.

The "basics" section will have a pros/cons section covering each level of management. Topics to be considered will be: level of control, complexity, cost/budget, flexibility, reliability, availability, etc.

An example will be given which discusses securing different types of tools at the same management level. CSP agnostic example: Securing a managed object storage vs securing a managed database (like S3 and DynamoDB).

Links

Josh-Beck avatar Jul 17 '23 17:07 Josh-Beck

@szh I'm not sure what the formal process is here. Can I take the help_wanted tag off and move forward?

Josh-Beck avatar Jul 21 '23 01:07 Josh-Beck

Yes, I'll do that now

szh avatar Jul 21 '23 01:07 szh

Done in #1178

szh avatar Aug 07 '24 20:08 szh