Cloud-10 Guidelines

Guideline Document
1. Development / Environment Setting

a) Developer Access
 * 1) Jump Server
 * 2) Multi factor Autch
 * 3) VPN/Cert based Authc

2. Architecture


 * 1) Tiering
 * 2) Communicaiton
 * 3) between zones
 * 4) within tiers
 * 5) ACLs
 * 6) AuthC/Identity
 * 7) Encryption
 * 8) Integration
 * 9) Web Services
 * 10) VPN based
 * WAF

3. Deployment and Testing
 * 1) Hardening

4. Operations
 * 1) Patching

Use Cases

 * 1) Deploying Third Party
 * 2) Building Your Own Application

Target Providers

 * 1) Savvis - Shankar
 * 2) Amazon EC2 - Vinay
 * 3) Google Apps - Pankaj

Timelines
1. Initial Draft from Shankar - Nov 29nd

2. Initial Draft from Vinay - Dec 9th