SAP DIGITAL CONSUMER INSIGHT: Customer Stories and Sample Use Cases

When businesses unlock the power of consumer mobile data, great things can happen. Find out more by reading some of the recent Customer Stories and Sample Use Cases...

sap

How To Secure Your Cloud Hosting? Part 2

Secure Your Cloud Hosting

Before getting into the nitty gritty of what we did in our projects for hardening the cloud servers hosted by us, we would like to emphasize the following, so that these can be firmly embedded in the mind set of readers.

  • First, the way cloud computing is attracting attention is mind boggling. Enterprises have started adopting to cloud concept where in they go for sharing public infrastructure. Having started this trend, it will go without any stopping in future. Traditional Security measures practiced in-house are not enough in the new trend.
  • Second, the inherent nature of elasticity multiplies the security need. Servers that we are talking about here are not servers as we saw them in the past as boxes. With virtualization, the servers we mention here are only files; instances as they may be called. System administrators should be aware of this fact.
  • Third, Organizations those turn in to IaaS, PaaS and SaaS, seems to be always in a hurry. They want the server to be up yesterday! There is no time given to do network and system administration jobs. As such there is a serious need to look at all the aspects of cloud servers starting from operating system, application security, to implementation of ISMS.
  • Fourth, the cyber criminals out there are even more sophisticated than what we could figure out every time! An entire underground business is running there parallel. There is economy working there, too. New servers coming up in cloud en-masse is aiding their activities. It is just that the forces that have nothing to do with our business may be encountered.
  • Fifth, the implication of security breach is severe nowadays. Reputation of businesses built over years and decades can go shambles in minutes! Just remember the recent news on the down times and outages of global services. Overnight businesses can go to bankruptcy if there is an attack.

Traditionally, system security is approached with Authentication/Access Control Methods, Input Handling and Denial of Service attacks.

Authentication: We started with RDP in the first part. Remote Desktop Connection is a required feature for server administration. Initially closing this is just like closing the house door. We did that. We need to do it in the initial days of server gone live. Because everyone is trying to hack the password and try to enter through Remote Connection, as soon as the cloud server is hosted! Then create a Secondary Administrator. The secondary Administrator user name should be very difficult to guess and figure out. The password for the same should be strongest.

Tip: In case we resort to complete disable or deletion of Administrator, as an extreme security measure, we can still log in through console. But, for resetting the password there will not be a way. Hence, as resetting the password may be required in future in the chance of us forgetting the credentials, better not to disable the Administrator access.

By Malick Md

About CloudTweaks

Established in 2009, CloudTweaks is recognized as one of the leading authorities in cloud connected technology information and services.

We embrace and instill thought leadership insights, relevant and timely news related stories, unbiased benchmark reporting as well as technology related infographics and comics.

In the meantime, please continue to visit and don't hesitate to reach out to us with questions regarding our consultative services, sponsorship programs or thought leadership opportunities.

Network Function Virtualization (NFV) Technology to Help Enable Service Providers to Manage More Than One Million Devices in Their Networks BARCELONA, MOBILE WORLD CONGRESS – March 1, 2017— With more than 10 billion devices and connections projected by 2020, according to Cisco’s Mobile Visual Networking  Forecast  (2016-2021), service providers will need the scalability and performance to manage the high growth ...
Read More
Achieves Certification to Further Mitigate Risk in Third Party Privacy, Security and Compliance for New and Existing Healthcare Customers SAN ANTONIO – March 1, 2017 – Rackspace® today announced that it has earned Certified status for information security by the Health Information Trust (HITRUST) Alliance for its dedicated environment. With the HITRUST CSFCertified status, the Rackspace Dedicated environment now meets ...
Read More
Amazon’s S3 web-based storage service is experiencing widespread issues, leading to service that’s either partially or fully broken on websites, apps and devices upon which it relies. The AWS offering provides hosting for images for a lot of sites, and also hosts entire websites, and app backends including Nest. The S3 outage is due to “high error rates with S3 ...
Read More
Honda Launches Connected Car Services BARCELONA, Spain (Mobile World Congress) – Honda is leveraging IoT solutions from Cisco Jasper® and Bright Box to deliver the MyHonda Connected Car platform, which provides a suite of powerful services that enhances the driving experience. MyHonda utilizes telematics solutions from Bright Box, powered by the Cisco® Jasper Control Center automated IoT connectivity management platform, ...
Read More
Cisco Jasper Completes NB-IoT Trials BARCELONA, Spain (Mobile World Congress) – In response to demand from an increasing number of companies looking for low cost, low power Internet of Things (IoT) devices to help optimize their businesses and deliver new services, Cisco today announced that Cisco Jasper® has completed live trials of NB-IoT on its Control Center connectivity management platform, ...
Read More

Why Security Practitioners Need To Apply The 80-20 Rules To Data Security

The 80-20 Rule For Security Practitioners  Everyday we learn about yet another egregious data security breach, exposure of customer data or misuse of data. It begs the question why in this 21st century, as a security industry we cannot seem to secure our most valuable data ...
Read More