Many factors menace hybrid cloud security, ranging from a lack of redundancy to poorly constructed SLAs. Here’s how IT should prepare.
FROM THE ESSENTIAL GUIDE:
Enterprise cloud security best practices for locking down your cloud
- More articles from this section:
- Gegevens security still inhibits public cloud adoption
- Amazon security still a ‘large concern’ te enterprise IT
- AWS customers get advice from the trenches on cloud security
- Cloud security services poised for big gains, according to Gartner
- Public cloud: Spel changer or security gamble?
- Enterprises can’t solely rely on providers for cloud gegevens security
- Cloud insurance makes headway te the enterprise amid security concerns
- PRISM scandal serves spil mother of invention for cloud privacy industry
- A look at the U.S. cloud market te a post-PRISM world
- Report claims that cloud environments spil secure spil in-house IT
- Exploring risk screenplays, mitigations of cloud computing insider threats
- E-Guide: Key Considerations for Creating a Hybrid Cloud &ndash,SearchDataCenter.com
- Best practices for hybrid cloud management &ndash,SearchCloudComputing.com
- Hybrid Cloud Strategy Guide &ndash,Lenovo and Intel
Despite the appeal of using public cloud, some IT admins are worried about turning overheen all their production.
Proceed Reading This Article
Love this article spil well spil all of our content, including E-Guides, news, tips and more.
applications to a third party or losing their substantial investment te on-premises infrastructure. Te such cases, a hybrid cloud environment can capitalize on the benefits of both public and private cloud.
But hybrid cloud isn’t ideal, it still includes a few security obstacles. Spil you analyze both business and technical hurdles, keep thesis five hybrid cloud security issues te mind.
Hybrid cloud security punt 1: Lack of gegevens redundancy
Public cloud providers commit significant resources to ensuring the infrastructure is available and accessible when end users need it. Te spite of a cloud provider’s best efforts, problems are inescapable.
Well-publicized outages highlight the risk of running your applications te a single gegevens center without failover to another. Cloud architects need redundancy across gegevens centers to mitigate the influence of an outage ter a single gegevens center. A lack of redundancy can become a serious security risk to your hybrid cloud, specifically if redundant copies of gegevens are not distributed across gegevens centers. It’s lighter to stir virtual machine (VM) instances inbetween gegevens centers than inbetween large gegevens sets.
Cloud architects can implement redundancy using numerous gegevens centers from a single provider, numerous public cloud providers or a hybrid cloud. And while you can improve business continuity with a hybrid cloud, that shouldn’t be the only reason to implement this specimen. You could save costs and attain similar levels of risk mitigation using numerous gegevens centers from a single cloud provider.
Hybrid cloud security kwestie Two: Compliance
Maintaining and demonstrating compliance can be more difficult with a hybrid cloud. Not only do you have to ensure that your public cloud provider and private cloud are ter compliance, but you also voorwaarde demonstrate that the means of coordination inbetween the two clouds is compliant.
If, for example, your company works with payment card gegevens, you may be able to demonstrate that both your internal systems and your cloud provider are compliant with the Payment Card Industry Gegevens Security Standard (PCI DSS). With the introduction of a hybrid cloud, you have to ensure that the gegevens moving inbetween two clouds is protected.
Additionally, you’ll need to ensure that card gegevens is not transferred from a compliant database on a private cloud to a less secure storage system te a public cloud. The methods you use to prevent a leak on an internal system may not directly translate to a public cloud.
Hybrid cloud security kwestie Trio: Poorly constructed SLAs
You may be certain that your public cloud provider can consistently meet expectations detailed ter the service-level agreement (Slaatje), but can your private cloud live up to that same Slaatje? If not, you may need to create SLAs based on expectations of the lesser of the two clouds — and that may be your private cloud.
Collect gegevens on your private cloud’s availability and spectacle under realistic workloads. Look for potential problems with integrating public and private clouds that could disrupt service. For example, if a key business driver for the private cloud is keeping sensitive and confidential gegevens on-premises, then your Slaatje should reflect the boundaries to which you can use public cloud for some services.
Hybrid cloud security punt Four: Risk management
From a business perspective, information security is about managing risk. Cloud computing (hybrid cloud ter particular) uses fresh application programming interfaces (APIs), requires complicated network configurations, and shoves the thresholds of traditional system administrators’ skill and abilities.
Thesis factors introduce fresh types of threats. Cloud computing is not more or less secure than internal infrastructures, but hybrid cloud is a complicated system that admins have limited practice ter managing — and that creates risk.
Hybrid cloud security punt Five: Security management
Existing security controls such spil authentication, authorization and identity management will need to work te both the private and public cloud. To integrate hybrid cloud security protocols, there are two options: Either replicate controls ter both clouds and keep security gegevens synchronized, or use an identity management service that provides a single service to systems running te either cloud. Allocate sufficient time during your programma and implementation phases to address what could be fairly ingewikkeld integration issues.
Implementing a hybrid cloud introduces more than just technical challenges, IT admins also need to address security issues. By understanding and mastering thesis five hurdles, hybrid cloud could offerande more prize than risk.