On December 7, 2009 in Mountain View at the Symantec vCafe, SDForum’s the Cloud Services and Security SIGs presented “Are clouds secure? security, privacy and compliance in clouds” with Subra Kumaraswamy of Oracle Sun Microsystems. Text from DJCline.com.
Ames Cornish started the evening with a review of the year’s worst cyber attacks. Countries attack each other’s networks, corporations engage in espionage, organized crime robs banks and individuals. Passwords, firewalls and encryption can all be overcome with the theft of a single laptop computer. With all of this going on, how do you maintain security?
Kumaraswamye showed how it can be done in his book â€œCloud Security and Privacy.” He addressed security and privacy issues raised by our transition to the cloud. Cloud computing helps corporations save money on their IT infrastructure but many are skeptical about security and privacy. Kumaraswamy discussed the challenges to ensure your web applications are secure and your data is safe. He talked about regulatory issues such as privacy, audit, and compliance implications of the security provided by public clouds.
Kumaraswamy reviewed the SPI delivery model which consists of software-as-a-service (SaaS), platform-as-a-service (PaaS), and infrastructure-as-a-service (IaaS). Now there is a security-as-a-service (SecS) delivered through the cloud as opposed to the security of other services like SaaS, PaaS, and IaaS offered by cloud service providers). By decided what are core data assets and non-sensitive data, you can focus resources on protecting what is truly necessary and put the rest in the cloud;
Copyright 2009 DJ Cline All rights reserved.