Cloud Computing for Business – Referenced Documents


The following documents are referenced in this Guide:

[BUSSCEN] Cloud Computing Business Scenario Workshop, Report, August 2009 (R091), published by The Open Group; refer to:
[BUYERSTREE] Cloud Buyers' Decision Tree, White Paper, July 2010 (W107), published by The Open Group; refer to:
[BUYERSQ] Cloud Buyers' Requirements Questionnaire, Version 1.0, White Paper, July 2010 (W108), published by The Open Group; refer to:
[CBUC] Strengthening your Business Case for Using Cloud, White Paper, July 2010 (W106), published by The Open Group; refer to:
[CHRISTENSEN] The Innovator’s Dilemma – When New Technologies Cause Great Firms to Fail, Clayton M. Christensen, Harvard Business School Press, ISBN: 0-87584-585-1.
[CLOUDROI] Building Return on Investment from Cloud Computing, White Paper, April 2010 (W104), published by The Open Group; refer to:
[COSO] Committee of Sponsoring Organizations of the Treadway Commission (COSO); refer to:
[CSA] Cloud Security Alliance; refer to:
[D&A] Rethinking Risk Management, Audrey Dorofee and Christopher Alberts, CMU SEI; refer to:
[DIACAP] US Department of Defense Information Assurance Certification and Accreditation Program (DIACAP), 2007.
[DMTF] Distributed Management Task Force; refer to:
[ECLIPSE] Eclipse Foundation; refer to:
[EUCALYPTUS] Eucalyptus: An Open Source Cloud Computing Infrastructure, Daniel Nurmi, Rich Wolski, Chris Grzegorczyk, Graziano Obertelli, Sunil Soman, Lamia Youseff, Dmitrii Zagorodnov; refer to:
[EU 95/46/EC] EU Data Protection Directive 95/46/EC, October 1995, European Parliament and the Council of the European Union.
[EXAMPLES] Downloadable spreadsheets containing data for the large examples in this book; refer to
[FAIR] The Open Group FAIR – ISO/IEC 27005 Cookbook, Technical Guide, November 2010 (C103), published by The Open Group; refer to:
[FEDRAMP] US Federal Risk and Authorization Management Program (FedRAMP); refer to:
[FEDSTRAT] Federal Cloud Computing Strategy, Vivek Kundra, US Chief Information Officer, February 2011; refer to:
[FISMA] US Federal Information Security Management Act (FISMA), 2002.
[GLBA] US Gramm-Leach-Bliley Act (GLBA), 1999.
[HIPAA] US Health Insurance Portability & Accountability Act (HIPAA), 1996.
[ICAEW] ICAEW Risk Management for SMEs; refer to:
[ISO 31000] ISO 31000:2009, Risk Management – Principles and Guidelines; refer to:
[ISAE 3402] International Standards for Assurance Engagements (ISAE) No. 3402.
[SSAE 16] Statement on Standards for Attestation Engagements (SSAE) No. 16.
[ITIL] Information Technology Infrastructure Library; refer to:
[IYAR] Why Buy the Cow, Subrah S. Iyar, Webex Communications,
ISBN: 9780615163130.
[LONG TAIL] The Long Tail: Why the Future of Business is Selling Less of More, Chris Anderson, New York: Hyperion, ISBN: 9781401309664.
[MCDONALD] Legal and Quasi-Legal Issues in Cloud Computing Contracts, Steve McDonald, General Counsel at the Rhode Island School of Design; refer to:
[NIST] The NIST Definition of Cloud Computing, Version 15; refer to:
[O-ACEML] Open Automated Compliance Expert Markup Language (O-ACEML), Technical Standard, May 2011 (C111), published by The Open Group; refer to:
[OAuth] An Open Protocol to Allow Secure API Authorization in a Simple and Standard Method from Desktop and Web Applications; refer to:
[OGF] Open Grid Forum; refer to:
[ORANGE BOOK] The Orange Book: Management of Risk – Principles and Concepts; refer to:
[PCI-DSS] Payment Card Industry Data Security Standard (PCI DSS); refer to:
[RISK] Risk Taxonomy, Technical Standard, January 2009 (C081), published by The Open Group; refer to:
[SEI RISK] CMU SEI Risk and Opportunity Management; refer to:
[SNIA] Storage Networking Industry Association; refer to:
[SOX] US Sarbanes-Oxley Act (SOX), 2002.
[SWITCH] The Big Switch: Rewiring the World, from Edison to Google, Nicholas Carr, ISBN-10: 0393062287.
[TOGAF] The Open Group Architecture Framework (TOGAF); refer to:
[TPC] Transaction Processing Performance Council; refer to:
[UNIX] The UNIX System; refer to:
[UPTIME] Uptime Institute; refer to: