Here’s a really interesting PDF from NIST on securing workloads in the cloud. The PDF describes a proof of concept (POC) carried out with VMware, RSA and Intel. The POC has a focus on testing geolocation in the cloud for the purpose of constraining the physical location of a server that a workload can be moved to for security or compliance reasons.
The principles of the POC are quoted from the PDF as:
- Create a part of the cloud to meet the specific and varying security requirements of users.
- Control access to that cloud so that the right applications get deployed there.
- Enable audits of that portion of the cloud so that users can verify compliance.