HIPAA Business Associate Agreement (BAA) Available for Windows Azure

The Windows Azure team has announced that Windows Azure now enables HIPPA compliance. Microsoft now offers a HIPAA BAA to our EA (Enterprise Agreement/volume licensing) customers and partners in the health industry. The announcement was made on the Windows Azure team blog post Security, Privacy & Compliance Update: Microsoft Offers Customers and Partners a HIPAA…

1

Developer Preview of Windows Azure AD Provides Single Sign-On, Graph API

Your cloud applications can now take advantage of the same identity system that powers Office 365, Dynamics CRM Online and Windows Intune. More than 250,000 companies and organizations use Windows Azure Active Directory today to authenticate billions of times a week. With a new developer preview you can now use Windows Azure Active Directory as…

0

Windows Azure, Dynamics, Office 365 Cloud Security, Compliance Details Shown in STAR Registry

Microsoft has added Windows Azure platform to the Cloud Security Alliance’s Security, Trust and Assurance Registry (STAR) registry. Cloud service providers post information about their security features. The CSA is a member-driven organization, chartered with promoting the use of best practices for providing security assurance within Cloud Computing. You can learn more about from the…

0

Windows Azure Security Best Practices – Part 7: Tips, Tools, Coding Best Practices

While writing the series of posts, I kept running into more best practices. So here are a few more items you should consider in securing your Windows Azure application. Here are some tools, coding tips, and best practices: Running on the Operating System Getting the latest security patches If you can, run in partial trust…

0

Windows Azure Security Best Practices – Part 6: How Azure Services Extends Your App Security

Several Windows Azure services help you extend your application security into the cloud. Three services can help you in providing identity mapping between various providers, connections between an on premises data center, and abilities for applications (where ever they reside) to send messages to each other: With Windows Azure Active Directory you create single sign…

0

Windows Azure Security Best Practices – Part 5: Claims-Based Identity, Single Sign On

Claims-based identity is a simple but powerful way of handling identity and access for your web sites and web services, whether you work on-premises or you are targeting the cloud. You can create more secure applications by reducing custom implementations and using a single simplified identity model based on claims. Windows Identity Foundation (WIF) is…

0

Windows Azure Security Best Practices – Part 4: What Else You Need to Do

So which security threats are mitigated by the Windows Azure environment and which security threats must be mitigated by the developer? The paper, Security Best Practices for Developing Windows Azure Applications, describes what you should consider as key threats that your an application running on the Windows Azure. And it shows specifically where Azure provides…

0

Windows Azure Security Best Practices – Part 3: Identifying Your Security Frame

When you are building out your cloud application, security should be front and center in your Windows Azure planning and execution. In part1  one I described the threat landscape and that your application should employ defense in depth. In part 2, I explained that security was a shared responsibility and that Windows Azure provides your…

0

Windows Azure Security Best Practices — Part 2: What Azure Provides Out-of-the-Box

In Windows Azure Security Best Practices — Part 1: The Challenges, Defense in Depth, I described the threat landscape and introduces the plan for your application to employ defense in depth. In this part, I explain that security with Windows Azure is a shared responsibility, and Windows Azure provides your application with security features than…

0

Windows Azure Security Best Practices — Part 1: The Challenges, Defense in Depth

Every conversation I have with developers about moving their application to the cloud revolve around two main issues. One is business. What are the economies of scale around moving your app to the cloud? And close on its heals, come the questions around security. “How secure is the cloud, especially Windows Azure? What benefits does…

0