The ALASCA Tech-Talks provide a platform to discuss projects that have the potential to improve the digital sovereignty of digital infrastructures and cloud services, as well as use cases that rely on these digital sovereign infrastructures and services.
Missed the Tech Talk? No problem, you can find all the recordings on our ALASCA YouTube channel.
What can you expect in the upcoming Tech-Talk?
In our February Tech Talk, you can look forward to the following speaker with this exciting presentation.
"Clouditor: Continuous Assurance of Cloud Services"
Christian Banse
Head of Department "Service & Application Security (SAS)" at Fraunhofer AISEC
In this talk, we will present the open-source project Clouditor, developed at Fraunhofer AISEC. Its main goal is to continuously evaluate if a cloud-based application (built using either a hyperscaler, such as AWS, or based on open source approaches like OpenStack/Kubernetes) is configured in a secure way and thus complies with security requirements.
These requirements can stem from various sources that define the state-of-the art in cloud security. Examples include the Cloud Computing Compliance Controls Catalogue (C5) issued by BSI or the upcoming European Cybersecurity Certification Scheme for Cloud Services (EUCS) by ENISA. Using an ontology-based approach that maps vendor-specific properties to a generic representation, new cloud services from other vendors can easily be added to the open-source project.
You want to be part of the Tech-Talk? Then send us a short message via the contact form below to get the access data.
Too complicated? Then download the calendar entry directly as an ics file here.
