Upload File

Download - Concerns with cloud computing

Transcript
Page 1: Concerns with cloud computing

Concerns with Cloud ComputingConcerns with Cloud ComputingUlf Mattsson

CTO, Protegrity

[email protected]

Page 2: Concerns with cloud computing

What Is Your No. 1 Issue Slowing Adoption of Public Cloud Computing?

2

Page 3: Concerns with cloud computing

Sensitive Data in the Cloud

3

Of organizations currently (or plan to) transfer sensitive/confidential data to the cloud in the next

24 mo.

Page 4: Concerns with cloud computing

Lack of Cloud Confidence

4

Number of survey respondents that either agree or are unsure that the cloud services used by their organization are

NOT thoroughly vetted for security.

Page 5: Concerns with cloud computing

Stopped or Slowed Adoption

5

Source: The State of Cloud Security

Blue: Most recent data

Page 6: Concerns with cloud computing

Data Loss & Insecure Interfaces

6

Number of Cloud Vulnerability Incidents by Threat Ca tegory

Page 7: Concerns with cloud computing

Computing as a Service:

• Software as a Service (SaaS)

• Platform as a Service (PaaS)

• Infrastructure as a Service (IaaS)

What is Cloud Computing?

Delivered Internally or Externally to the Enterprise:

• Public

• Private

• Community

• Hybrid

7

Page 8: Concerns with cloud computing

Software as a Service (SaaS)

Typically web accessed internet-based applications (“on-demand software”)

Platform as a Service (PaaS)

An internet-based computing platform and solution stack. Facilitates deployment of

Service Orchestration

Applications

8

solution stack. Facilitates deployment of applications at much lower cost and complexity

Infrastructure as a Service (IaaS)

Delivers computer infrastructure (typically a virtualized environment) along with raw storage and networking built-in

Page 9: Concerns with cloud computing

Public Cloud

9

Page 10: Concerns with cloud computing

Public Cloud

10

Page 11: Concerns with cloud computing

Public Cloud – No Control

11

Consumers have no control over security once data is inside the public cloud. Completely reliant on provider for application and storage security.

Page 12: Concerns with cloud computing

Private Cloud

Outsourced Private Cloud

12

On-sitePrivate Cloud

Page 13: Concerns with cloud computing

Private Cloud – Limited Control

Outsourced Private Cloud

Consumer has limited capability to manage security within outsourced

13

On-sitePrivate Cloud

within outsourced IaaS private cloud.

Page 14: Concerns with cloud computing

Threat Vector Inheritance

14

Page 15: Concerns with cloud computing

Virtual machine guest hardening

Hypervisor security

Inter-VM attacks and blind spots

Performance concerns

Operational complexity from VM sprawl

Instant-on gaps

Virtualization Concerns in Cloud

Instant-on gaps

Virtual machine encryption

Data comingling

Virtual machine data destruction

Virtual machine image tampering

In-motion virtual machines

15


Top Related

Security concerns with SaaS layer of cloud computing
Security concerns with SaaS layer of cloud computing
Cloud Security: Issues and Concerns - unimi.itspdp.di.unimi.it/papers/sd-cloud_security.pdf · 2014-11-04 · cloud computing (ENISA, 2009). The Cloud Security Alliance (CSA) lists
Cloud Security: Issues and Concerns - unimi.itspdp.di.unimi.it/papers/sd-cloud_security.pdf · 2014-11-04 · cloud computing (ENISA, 2009). The Cloud Security Alliance (CSA) lists
Adopting cloud computing within the healthcare industry ... · concerns associated with adopting cloud computing within the healthcare environment be identified and carefully examined,
Adopting cloud computing within the healthcare industry ... · concerns associated with adopting cloud computing within the healthcare environment be identified and carefully examined,
INTRODUCTION TO CLOUD COMPUTING ggg UNDERSTANDING CLOUD COMPUTING UNDERSTANDING CLOUD COMPUTING DEFINITION CLOUD COMPUTING
INTRODUCTION TO CLOUD COMPUTING ggg UNDERSTANDING CLOUD COMPUTING UNDERSTANDING CLOUD COMPUTING DEFINITION CLOUD COMPUTING
Security Concerns in Cloud Computing
Security Concerns in Cloud Computing
HETEROGENEITY, HIGH PERFORMANCE COMPUTING, SELF ... · the separation of concerns. Chapter presents CloudLightning, a novel 2 heterogeneous cloud computing architecture. Chapters
HETEROGENEITY, HIGH PERFORMANCE COMPUTING, SELF ... · the separation of concerns. Chapter presents CloudLightning, a novel 2 heterogeneous cloud computing architecture. Chapters
CLOUD COMPUTING. Contents Introduction to cloud computing. Three levels of cloud computing: Implementation of cloud computing Private cloud Public cloud
CLOUD COMPUTING. Contents Introduction to cloud computing. Three levels of cloud computing: Implementation of cloud computing Private cloud Public cloud
Cloud Computing and Business Intelligence - · PDF fileevolved grid computing infrastructure. Fig. 2. Cloud Computing ... 2.1 Cloud Computing ... 52 Cloud Computing and Business Intelligence
Cloud Computing and Business Intelligence - · PDF fileevolved grid computing infrastructure. Fig. 2. Cloud Computing ... 2.1 Cloud Computing ... 52 Cloud Computing and Business Intelligence