The Risks Of Moving To The Cloud

The Risks Of Moving To The Cloud

In the current global economic climate, companies and enterprises are required to migrate to cloud-based deployment models in order reduce costs and become self-sustainable. Post the dot-com bubble, the development of advanced web and storage technologies has been on the ascension. One such revolutionary technology developed post the dot-com era is cloud Computing, which focuses on the deliverance of computing services over the Internet. The highlight characteristic of cloud computing technologies is that they bring about system independence, multi-tenancy, scalability, virtualization, and more. Due to these benefits, companies and organizations are keen on migrating to cloud computing platforms.

Security is a prime area of concern for businesses when planning to migrate to cloud based services, along with other concerns such as reliability and integrating capability with existing IT infrastructure. There are already numerous assertions made by major technology companies regarding the rise of cloud-based deployments. In a recent conference, Cisco stated that it will be a tedious task to monitor data transferred to and from the cloud. On the flip side, renowned cloud service providers like Salesforce.com and Amazon Web Services state that the fears regarding security risks in cloud-based models are sort of overblown.

Based on the requirement and business niche, businesses can choose from four types of cloud deployment models: Public cloud, Community cloud, Hybrid cloud, and Private cloud. A recent study disclosed that in the next four years about 50% of existing small and medium-sized businesses will shift to cloud-based deployment models. Though the security risks pertaining to cloud-based services are yet to be documented, it is wise for businesses to be aware of the impending security breaches that the cloud-based models are prone to. Some of the well-known security risks that cloud-based models bring about are long-term viability, data segregation & location, data recovery, regulatory compliance, and privileged user access.

Cloud-based service users have reported several glitches and failures, while using the cloud. A recent test conducted by a security firm revealed that almost half of all the cloud-based software services flunked the prescribed security level. Moreover, the quality of existing cloud-based applications for business critical domains did not meet the prescribed high security level, and it is reported that cross-scripting errors are the cause of close to 50% of all vulnerabilities. There are two perspectives to security risks on a cloud, one is a provider perspective and another is the user perspective. I have aggregated below the most common security risks from both perspectives.

  • Assess the level of access that the service provider has to your cloud. Before selecting a cloud-based service provider, evaluate and set the level of control in the service level agreement.
  • Multi-tenancy is one of the inherent characteristics of a cloud-based deployment. As a result, there is a high risk of mechanism failures due to routing and lack of storage separation.
  • Industry regulatory requirements for certain certifications are exposed to security breaches as a result of migrating to the cloud. For this purpose, it is mandatory for cloud service providers to provide compliance and allow customers to audit their cloud-based deployments.
  • For businesses seeking to set up public clouds, they are prone to exposing their customer access points and interfaces through the web. This risk is even higher, when combining the vulnerabilities of remote access and web browsers.
  • Data protection is one of the prime security risks that come along with cloud-based deployment models. In certain cases, it is hard for a user to check the data management practices of a cloud service provider.
  • As cloud-based deployment models have large amounts of data in transit between the remote system and cloud infrastructure, there is need for virtual private network like secure connection to increase the credibility. VPNs ensure secure data transfer, while safeguarding the network from spoofing, side channel cyber attacks and other kinds of network attacks.
  • Data deletion is not guaranteed. If you want to delete a data on a cloud, it is uncertain that whether or not data is clearly wiped out or can be recovered. It is understood that in certain cases additional copies are stored, but cannot be deleted as the disk to be formatted also stores other data.

In conclusion, the security risks of moving to cloud-based models are high, but can be minimized by adopting certain strategies. In order to allay the fears of security risks, businesses are required to evaluate risk mitigation strategies and de-risking strategies. After migrating to cloud-based deployments, it is essential for businesses to engage in active risk management and spend time monitoring the cloud.

By Carlene Masker

Carlene Masker is a technology enthusiast who is fond of writing helpful tips and fresh tidbits of information about the different fields in technology and innovation. She is currently working with Telco Services where you can find the latest information on Verizon FiOS deals.

Follow Us!

CloudTweaks

Established in 2009, CloudTweaks.com is recognized as one of the leading authorities in cloud computing information. Most of the excellent CloudTweaks articles are provided by our own paid writers, with a small percentage provided by guest authors from around the globe, including CEOs, CIOs, Technology bloggers and Cloud enthusiasts. Our goal is to continue to build a growing community offering the best in-depth articles, interviews, event listings, whitepapers, infographics and much more...
Follow Us!

One Response to The Risks Of Moving To The Cloud

  1. Different cloud providers provide varying degrees of integrated security (or not). One way of reducing risk is choosing the right tools already integrated with a particular platform. Another way is including the needed security/compliance requirements into SLAs. Yet another approach, likely in conjunction with one or both of the other two, is to utilize existing (traditional IT) best practices.

Join Our Newsletter

Receive updates each week on news, tips, events, comics and much more...

Can I Contribute To CloudTweaks?

Yes, much of our focus in 2015 will be on working with other influencers in a collaborative manner. If you're a technology influencer looking to collaborate with CloudTweaks – a globally recognized leader in cloud computing information – drop us an email with “tech influencer” in the subject line.

What is the 12/12 Program?

This program is designed to better handle the thousands of requests we receive from people looking to submit articles. The 12/12 program is the commitment of 12 articles delivered over a 12-month period.  

Wait! What if I just want to submit one article?

Our popular pay as you go sponsorship program provides the flexibility to submit as you wish and is designed for all budgets.

Contributors

Ten Tips For Successful Business Intelligence Implementation

Ten Tips For Successful Business Intelligence Implementation

Ten Tips for Successful Business Intelligence Implementation The cost of Business Intelligence (BI) software goes far beyond the purchase price. Time spent researching, implementing, and maintaining your BI investment can snowball quickly and mistakes are often expensive. Your time is valuable – save it by learning from other businesses’ experiences. We’ve compiled the top ten

Knots And Cloud Service Providers

Knots And Cloud Service Providers

How Do These Two Compare? In Boy Scouts, I learned how to tie knots. The quickest knot you can tie is the slipknot. It’s very effective for connecting one thing to another via the rope you have. It was used in setting up tents, mooring boats to docks temporarily and lifting your food up into

What Ever Happened To Google Glass?

What Ever Happened To Google Glass?

What Ever Happened to Google Glass? It was supposed to be the next big thing in tech so where did it go? Last year you could not go anywhere without hearing about some insane new use for the product and now it seems to have vanished in a plume of smoke. A Lackluster Rollout Back

Posted on by

Big Data

To Have and Have Not: Big Data Initiatives In Developing Countries

To Have and Have Not: Big Data Initiatives In Developing Countries

Big Data Initiatives In Developing Countries The poor of the developing countries are becoming increasingly connected, to the point where they too are part of the Big Data revolution that’s happening across the globe. It didn’t come with laptops, though, as some supposed it would. Whereas it costs a fortune to connect broadband to a

Big Data In Your Garden: Initiatives For Better Understanding Nature

Big Data In Your Garden: Initiatives For Better Understanding Nature

Big Data in Your Garden Big Data and IoT initiatives are springing up all across the globe, making cities, protesters–and just about everything else–smarter. However, thus far there’s been little attention paid to the interactions between these bizarre technologies and living things other than humans. Biology, that is, human biology is one field where Big

Who Holds the Key to the City: Big Data and City Management

Who Holds the Key to the City: Big Data and City Management

Big Data and City Management Cities like New York, Madrid, and especially Rio de Janeiro are augmented with Big Data-powered initiatives that range from combating crime with predictive analytics (New York & Madrid) to providing real-time data for improved management. Although Big Data is no panacea and is mainly used in conjunction with a greater

Internet of Things

Where’s the Capital of the Internet of Things?

Where’s the Capital of the Internet of Things?

Where’s the Capital? We all know the capitals of fashion are London, New York and Paris, while the capital of film is Hollywood (or Bollywood!) – but what’s the new capital of the internet? Specifically, the internet of things? The answer – according to new research by Ozy – might surprise you. It’s not Tokyo, Seoul,

Smart Cities – How Big Data Is Changing The Power Grid

Smart Cities – How Big Data Is Changing The Power Grid

Smart Cities And Big Data As Anthony Townsend argues in his SMART CITIES, even though the communications industry has changed beyond recognition since its inception, the way we consume power has remained stubbornly anachronistic. The rules of physics are, of course, partially to blame, for making grid networks harder to decentralize, as opposed to communication

Aggregated News

Popular News Sources

Microsoft to enter the STRUGGLE of the Human Wrist

Microsoft to enter the STRUGGLE of the Human Wrist

It’s not just a thumb war, it’s total digit war The battle for the future of the human wrist entered a new phase on Monday after it was claimed that tech goliath Microsoft is planning to release its own wearable computer in the coming weeks.…Read the source article at The Register About Latest Posts Follow

Standards Organization ISO Takes on Cloud Computing Standards

Standards Organization ISO Takes on Cloud Computing Standards

Given the quality differences in different cloud services and issues of compatibility, ISO, the world’s best known standards body has issued two standards related to cloud computing…. Read the source article at Web Host Industry Review About Latest Posts Follow Us!CloudTweaksEstablished in 2009, CloudTweaks.com is recognized as one of the leading authorities in cloud computing

IBM Paying $1.5 Billion to Shed Its Chip Division

IBM Paying $1.5 Billion to Shed Its Chip Division

IBM will pay $1.5 billion to Globalfoundries in order to shed its costly chip division. IBM will make payments to the chipmaker over three years, but it took a $4.7 billion charge for the third quarter when it reported earnings Monday. Read the source article at Mashable About Latest Posts Follow Us!CloudTweaksEstablished in 2009, CloudTweaks.com is