Security for the Cloud: Data Integrity, Data Resilience and Data Security

Data Integrity, Data Resilience and Data Security

Given the recent rise in popularity of cloud-based solutions, it is not surprising that there is a concern in the minds of many people regarding the security of their data.

This is safeguarding the data against:

  • Unauthorized access
  • Data corruption or loss
  • Hardware failure

In reality, you will use much of the same precautions for cloud-based solutions as you would for a solution running in a corporate datacentre.

Data Integrity



When you are running an application on a server, you normally configure a suitable backup routine so that it is safe in the event of a data-loss incident. It does not matter if this is a corrupt entry in a database file, deletion of user data or even a more disastrous data loss due to a fire or theft.  Usually, the data will backup to portable media on a regular basis which will then be stored in an off-site location.

If you migrate an application to a cloud-based provider, it is important to consider how to backup the data. This can be to traditional backup media which will need storing off-site, or you can take advantage of the physically-diverse locations to store the backups in a completely different place. Your backup schedule and how long backups are kept will be a trade-off between the critical of the data and any legislative requirements against the associated costs.

Another important aspect to consider is the testing of the backup process. For an important system, you should aim to run a disaster recovery test on a regular basis. For this, you should aim to restore a fully working copy of your system from a recent backup. Luckily with a cloud solution, this process can occur a lot quicker than it would in a traditional datacentre environment.

Data Resilience

For a local system, you might look into using multiple resilient servers configured as part of a cluster. With modern clustering technology these can be locating in physically diverse datacentres. If you lose a server, or even a datacentre, the entire system will fail over to the other servers and the users will hardly notice a thing.

With a cloud-based application, this resilience is automatically built-in. By hosting your application on the cloud it is completely unaffected by the loss of a physical device or location.

Data Security

Data security is a hot-topic at the moment. Any unauthorized access can result in embarrassment for your business and even loss of money though theft. As always when it comes to security, limit access only to those people that specifically need access to the data or application. One of the worst mistakes that you can make is to relax access to your data and allow too many people in. It is also good practice to check the access on a regular basis and remove any users who no longer need access to the data.

You should always check with your hosting company that their servers and applications have a regular patch schedule to ensure that any discovered security flaws in the software are fixed. This is particularly important when your application runs on a Windows platform.

Even with the best policies and technical experts, there are still security holes that can slip through the gap. A regular security audit and penetration test will help to find and fill any of these holes, before the hackers do.

The principles behind data security in a cloud-based environment are no different from any other kind of hosting. Make sure that you set up you procedures correctly from the outset and perform regular audits of these procedures and will have covered yourself as much as you possible can.

Image Source: Evron

By Dave Schofield

CloudTweaks

Established in 2009, CloudTweaks is recognized as one of the leading authorities in cloud connected technology information and consultancy services.

Are you a cloud services expert in a world of digital transformation? If so, contact us for information on how to become part of our growing cloud consultancy ecosystem.

CONTRIBUTORS

As Enterprises Execute Their Digital Strategies, New Multi-cloud Landscape Emerge

As Enterprises Execute Their Digital Strategies, New Multi-cloud Landscape Emerge

The Multi-cloud Landscape The digital universe is expanding rapidly, and cloud computing is building the foundation for almost infinite use ...
The Five Rules of Security and Compliance in the Public Cloud Era

The Five Rules of Security and Compliance in the Public Cloud Era

Security and Compliance  With technology at the heart of businesses today, IT systems and data are being targeted by criminals, ...
Countdown to GDPR: Preparing for Global Data Privacy Reform

Countdown to GDPR: Preparing for Global Data Privacy Reform

Preparing for Global Data Privacy Reform Multinational businesses who aren’t up to speed on the regulatory requirements of the European ...
Principles of an Effective Cybersecurity Strategy

Principles of an Effective Cybersecurity Strategy

Effective Cybersecurity Strategy A number of trends contribute to today’s reality in which businesses can no longer treat cybersecurity as ...
Financial Management Finds a Welcome Home in the Cloud

Financial Management Finds a Welcome Home in the Cloud

Cloud Based Financial Management The most cautious person in any organization is likely to be the CFO. After all, they’re ...
Why ‘Data Hoarding’ Increases Cybersecurity Risk

Why ‘Data Hoarding’ Increases Cybersecurity Risk

Data Hoarding The proliferation of data and constant growth of content saved on premise, in cloud storage, or a non-integrated ...
AWS S3 Outage & Lessons in Tech Responsibility From Smokey the Bear

AWS S3 Outage & Lessons in Tech Responsibility From Smokey the Bear

AWS S3 Outage & Lessons in Tech Responsibility Earlier this week, AWS S3 had to fight its way back to ...
Cloud Services Are Vulnerable Without End-To-End Encryption

Cloud Services Are Vulnerable Without End-To-End Encryption

End-To-End Encryption The growth of cloud services has been one of the most disruptive phenomena of the Internet era.  However, ...
Cloud-Based or On-Premise ERP Deployment? Find Out

Cloud-Based or On-Premise ERP Deployment? Find Out

ERP Deployment You know how ERP deployment can improve processes within your supply chain, and the things to keep in ...
Achieving Network Security In The IoT

Achieving Network Security In The IoT

Security In The IoT The network security market is experiencing a pressing and transformative change, especially around access control and ...

NEWS

Deloitte TMT Predictions: Machine Learning Deployments, On-Demand Content and Live Events Will Continue to Drive Growth

Deloitte TMT Predictions: Machine Learning Deployments, On-Demand Content and Live Events Will Continue to Drive Growth

NEW YORK, Dec. 12, 2017 /PRNewswire/ -- Deloitte forecasts double digital growth in machine learning deployments for the enterprise, an increasing worldwide ...
U.S. IT Sector Employment Expands by 8,100 Jobs in November, CompTIA Analysis Reveals

U.S. IT Sector Employment Expands by 8,100 Jobs in November, CompTIA Analysis Reveals

DOWNERS GROVE, Ill., Dec. 8, 2017 /PRNewswire-USNewswire/ -- New hiring in computer and electronics manufacturing and technology services and custom ...
Hackers shut down infrastructure safety system in attack: FireEye

Hackers shut down infrastructure safety system in attack: FireEye

Hackers shut down infrastructure safety system (Reuters) - Hackers likely working for a nation-state recently penetrated the safety system of ...