Read the following links for further readings:
- CSA (Cloud Security Alliance) Security White Papers:https://cloudsecurityalliance.org/download/
- NIST Security Considerations in the System Development Life Cycle: https://nvlpubs.nist.gov/nistpubs/legacy/sp/nistspecialpublication800-64r2.pdf
- ISO 29100 information technology security techniques privacy framework: https://www.iso.org/standard/45123.html
-
NIST National Checklist Program https://nvd.nist.gov/ncp/repository
- OWASP Guide to Cryptography https://www.owasp.org/index.php/Guide_to_Cryptography
- NVD (National Vulnerability Database) https://nvd.nist.gov/
- CVE details https://cvedetails.com/
- CIS Cybersecurity Tools https://www.cisecurity.org/cybersecurity-tools/
- Security aspects of virtualization by ENISA: https://www.enisa.europa.eu/publications/security-aspects-of-virtualization/at_download/fullReport
- CIS Benchmarks also provides a security guide for VMware, Docker, and Kubernetes: https://www.cisecurity.org/cis-benchmarks/
- OpenStack's hardening of the virtualization layer provides a secure guide to building the virtualization layer: https://docs.openstack.org/security-guide/compute/hardening-the-virtualization-layers.html
- Docker security at https://docs.docker.com/engine/security/security/
