Newsletter Subscribe

Bringing you thought leadership, news, infographics, resources and our own brand of comics each week to your inbox...

Security And Management In The Cloud

Security And Management In The Cloud

Though there are various challenges involved in maintaining a cloud service, one of the major challenges that organizations face is security management. The advent of global computing represents cloud computing in totality. This has transcended boundaries, not just nationally, but also internationally.

This same globalization is another challenge that has emerged for cloud technology, because traditional security models do not apply in the cloud infrastructure. Let us take, for example, firewall infrastructure. The very invention of firewalls in traditional systems was meant to provide “blocking-security” for single hardware devices. However, with cloud computing models, the very definition of this is thrown out of the window. The cloud itself is outside these defined perimeters, and there need to be device-separated regimes for cloud security management. Traditional IT regimes work less on this kind of infrastructure and are not quite practical. Since we are making massive changes in the infrastructure, changes are also needed in security management.

Why is it difficult to maintain security on the cloud?

Security is made difficult by the fact that the infrastructure is not owned by the party itself – it is somebody else who owns the entire infrastructure. Hence, it is difficult to get changes in security implemented as you try to scale the rest of your IT infrastructure. If these two growths are not in complete synchronization with each other, there are bound to be holes in the coverage and gaps that are difficult to seal down.

Automating firewall management clouds

This is not just a possibility; it is essential. There is a high degree of elasticity associated with cloud infrastructure – be it public, private or hybrid. As a result, security is essential and must be deployed on the basic cloud server. If you are taking a third-party cloud, you must insist on a security check at the cloud server level. Time-based controls, which close ports such as RDP, etc. and open only when there is a demand, are a good option. This ensures that your servers are always secured, and since you have the security server on your own side, the policies can be easily coupled with your infrastructure.

Should one take a hybrid approach to security solutions?

There are various reasons why the hybrid approach is perhaps not a good one. Most traditional security methods do not exist for the cloud. Also, the entire process of securing your cloud infrastructure is quite different from securing traditional IT infrastructure. Many server admin ports such as SSH, etc., are left open in traditional infrastructure. This is because the server sits behind the corporate infrastructure, and there is abundant security and less risk.

However, this is not possible with the cloud, as everything is so elastic that there are no fixed perimeters. In this case, therefore, admin ports cannot be left open as they were in the traditional case. There needs to be a custom solution for this which is different for every different cloud. The need of the hour, however, is to realize the importance of these custom security management systems to the cloud.

By Kaamil Nakhasi

Philips spotlights connected technology, predictive analytics software, and artificial intelligence advancing population health and precision medicine at HIMSS 2017 AMSTERDAM, Feb. 17, 2017 /PRNewswire/ -- Featuring new and enhanced connected health offerings at the 2017 HIMSS Conference & Exhibition (HIMSS17), Royal Philips (NYSE: PHG,AEX: PHIA), a global leader in health technology, will showcase a broad range of population health management, ...
Read More
Cupertino, California — Apple today announced its 28th annual Worldwide Developers Conference (WWDC) — hosting the world’s most talented developer community — will be held at the McEnery Convention Center in San Jose. The conference, kicking off June 5, will inspire developers from all walks of life to turn their passions into the next great innovations and apps that customers ...
Read More
When Cisco Systems Inc. reports earnings Wednesday, the big question will be if the networking giant’s repeated gambles on software can reverse a yearlong sales slide, or at least point to a reversal of that trend in the future. Cisco CSCO, +1.06%  is scheduled to report fiscal second-quarter earnings less than a month after announcing its latest multibillion-dollar software acquisition, ...
Read More
Offering Integrated and Automated Solutions, Expansive Partner Ecosystem, Advanced Architecture with Cross-Industry Collaboration SAN FRANCISCO, Feb. 14, 2017 – Today Intel Security outlined a new, unifying approach for the cybersecurity industry that strives to eliminate fragmentation through updated integrated solutions, new cross-industry partnerships and product integrations within the Intel Security Innovation Alliance and Cyber Threat Alliance (CTA). “Transforming isolated technologies ...
Read More
IoT Enablement, Analytics Offer Strong Monetisation Opportunities HAMPSHIRE, UNITED KINGDOM--(Marketwired - February 13, 2017) - A new study from Juniper Research has calculated that mobile network operators can realise an additional $85 billion in revenues over the next five years through the deployment and enhancement of non-core services including Big Data analytics and IoT (Internet of Things) enablement. Operators "Can ...
Read More