Addressing Cloud Security Through Encrypted Gateways

Addressing Cloud Security Through Encrypted Gateways

Addressing Cloud Security through Encrypted Gateways

There is absolutely no doubt left in Cloud’s increasing penetration into the enterprise. CIO’s often see the move to the cloud as control being taken away from their hands. A silent tussle between COO and CIO pursues and this naturally leads to resistance over what to choose and what to migrate vis-à-vis Cloud. Perhaps the primary concern is security. COO sees Cloud as a means to boost productivity and reduce infrastructure and maintenance costs while CIO sees it as inflated threat to enterprise information. Encryption gateway is one way to address information security concerns when moving to the Cloud. I will briefly discuss how and why.

First, gateways are nothing new. There are numerous vendors, big and small, out there selling gateway appliances. However, what’s new and innovative in encryption gateway is the robustness and seamless flow of data in and out of the enterprise.

google-imageData encryption is a compute intensive procedure which may lead to increased query time and reduced application performance. This is one of the primary factors why encryption is not as much prevalent as it should have been. However, recent advances in hardware based encryption for example, Intel’s new instructions which speed up AES (Advanced Encryption Standard) encryption on the hardware and gKrypt SDK which offers hardware accelerated encryption on commodity processors including latest manycore GPUs, have removed the “performance-tax” barrier in data encryption. With gKrypt for example, you can achieve throughput of up to 80Gbps for AES-256 encryption on a single GPU. Such advances have enabled encryption appliances to offer seamless data security without impacting application (or Cloud application in our case) performance.

One key factor to look out for while deciding on implementing data security in the Cloud is where to put your keys, because, as the saying goes, ‘your data is only as safe as the strength of your key’. What it implies is that it does not really matter how strong your encryption scheme is unless you take good care of the key lifecycle. This ‘key lifecycle’ includes key generation, usage (for encryption/decryption) and disposal. The key should never leave your premises, the reason being that once it leaves your premises, you cannot guarantee the safety of your data no matter how awesome your SLA with your cloud provider is. Do not confuse key-management with data-encryption or encryption-gateways, something which first timers often tend to commit. There are vendors who just sell key management appliances which can be plugged with any encryption gateway appliance. Some appliance makers also sell both as a turn-key solution, however, when making a decision, always gauge the strength of your key manager separately from the encryption appliance.

This small concept image describes the data security layout from a bird’s eye-view. The encryption appliance sits in between the corporate network and the Cloud. The Cloud could be private or public. Your organization may be utilizing SaaS apps on the cloud without worrying about the security of the data which leaves your premises. Anything which goes out to the Cloud is encrypted behind-the-scenes and anything which comes in is first decrypted before being consumed by your enterprise workers.

By Salman UI Haq

Follow Us!

CloudTweaks

Established in 2009, CloudTweaks.com is recognized as one of the leading authorities in cloud computing information. Most of the excellent CloudTweaks articles are provided by our own paid writers, with a small percentage provided by guest authors from around the globe, including CEOs, CIOs, Technology bloggers and Cloud enthusiasts. Our goal is to continue to build a growing community offering the best in-depth articles, interviews, event listings, whitepapers, infographics and much more...
Follow Us!

Sorry, comments are closed for this post.

Cloud Infographic – Cloud Fast Facts

Cloud Infographic – Cloud Fast Facts

Cloud Infographic – Cloud Fast Facts It’s no secret that Cloud Computing is more than just a buzz term as that ship has sailed off a long time ago. More and more companies are adopting the uses and benefits of cloud computing while aggressively factoring cloud services spending into their budget. Included is an excellent…

Cloud Computing Offers Key Benefits For Small, Medium Businesses

Cloud Computing Offers Key Benefits For Small, Medium Businesses

A growing number of small and medium businesses in the United States rely on as a means of deploying mission-critical software products. Prior to the advent of cloud-based products — software solutions delivered over the Internet – companies were often forced to invest in servers and other products to run software and store data. The…

IBM and SAP Announce Industry’s Largest Cloud Deal

IBM and SAP Announce Industry’s Largest Cloud Deal

IBM and SAP Announce Industry’s Largest Cloud Deal IBM and SAP have shaken the cloud computing world this afternoon with the announcement of one of the largest cloud deals in the industry’s history – bringing together two of the largest technology companies in a bid to offer a more holistic service to their clients. SAP…

Cloud Computing Adoption Continues

Cloud Computing Adoption Continues

Cloud Computing Adoption Continues Nowadays, many companies are changing their overall information technology strategies to embrace cloud computing in order to open up business opportunities.  There are numerous definitions of cloud computing. Simply speaking, the term “cloud computing” comes from network diagrams in which cloud shapes are  used to describe certain types of networks. All…

Cloud Infographic – Cyber Security And The New Frontier

Cloud Infographic – Cyber Security And The New Frontier

Cyber Security: The New Frontier The security environment of the 21st century is constantly evolving, and it’s difficult to predict where the next threats and dangers will come from. But one thing is clear: the ever-expanding frontier of digital space will continue to present firms and governments with security challenges. From politically-motivated Denial-of-Service attacks to…

CONNECT TO THE CLOUD

 

Cloud Logo Sponsors

hp Logo CityCloud-PoweredByOpenstack-Bluesquare_logo_100x100-01
cisco_logo_100x100 vmware citrix100


Contributor Spotlight

Established in 2009, CloudTweaks is recognized as one of the leading influencers in cloud computing, big data and internet of things (IoT) information. Our goal is to continue to build our growing information portal, by providing the best in-depth articles, interviews, event listings, whitepapers, infographics and much more.

Contact

CloudTweaks Media
Phone: 1 (212) 763-0021