One of the key requirements to use GAE for enterprise applications is to document and test all aspects of security.
Of course, you can encrypt all your data at rest but a lot more is required to satisfy financial industry participants and regulators. Often a SAS70 type-2 audit or PCI compliance statement is required. The AWS people have been working at this for some time and have a statement about it here: http://developer.amazonwebservices.com/connect/entry!default.jspa?categoryID=152&externalID=1697 Some statement like that from Google would be valuable in this process. What are the plans at Google to support best-in-class security practices? --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to google-appengine@googlegroups.com To unsubscribe from this group, send email to google-appengine+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en -~----------~----~----~----~------~----~------~--~---
