reports that a new working group called Cloud Security Notification Framework that includes Google, IBM and Microsoft is attempting to develop a new framework for cloud information security that is partly standard and part open source.
The group has already pulled in a few major cloud service consumers, including FedEx, Goldman Sachs and Pfizer, but conspicuously lacks the involvement of top market player AWS, though it’s hoped that the company will join in when the project matures.
“There’s lots of security programs and industry programs that get out there and that people are asking them to join, and so some companies want to wait to see how well this pans out [before making a commitment to it],” said Nick Lippis, co-founder and co-chairman of open enterprise cloud community ONUG.
The initiative uses open dialog between a committee of leaders of cloud consumer firms and cloud providers to direct the development of the framework and has picked a system for tracking security alerts in the cloud as a starting point.
The group plans to finish the current testing phase and provide a demonstration of its progress on the framework in October.