Like it or not, people are moving to Cloud storage at a fueling pace. Below are a few security issues and patches you might want to consider. There is always a question on the level of security that a trusted cloud data center should provide. Below mentioned are the associated security realities and/or threats, and their most effective solutions.
Level of Security a Trusted Cloud Data Center Should Provide
Sensitive Data Access
There must be safeguards to ensure that no unauthorized person is able to access data. This usually means password options, a protocol for password change, known IP access only, and potential threat lockdowns.
Data Segregation
This is relevant in both private and public environments, but more so in the latter since you give up more control. At the very least no one individual must have access to a workable set of data. This way, even if one person breaches confidentiality, that bit of data is useless.
Privacy
This is usually done via data encryption. You want your host to provide the newest and relatively secure encryption tech based on the type of data you store and the service that you availed of.
Checking for Bugs
How regularly does your host check for bugs? How often have they been the victim of the same, and how long did it take them to patch things up? Remember, no platform is bug free. What is important is how effective and efficient did the provider patch things up.
Recovery
Obviously, you want your hosting service to allow you to recover your data during and even several months after your contract expired. You also want to verify the “server snapshot feature”.
Accountability
This refers to your provider’s promise to determine the fault, and compensate you for any real or potential loss of income. Remember, there are two aspects to this. First is the determination of fault and the second is appropriate recompense.
Malicious Insiders
This refers to personnel of the hosting service who are there to siphon information for their own profit. As such you want to know in detail of the procedure for hiring and firing of a host. At least in so far as employees who can potentially access to sensitive information.
Account Control
Account control is preferably via tier type accounts, each with its own level of visibility and control. Of course account control is only as good as good as the requirements you submit and how well your personnel sticks with the protocol.
Multi-Tenancy Issues
To date, most experts agree that this issue can be resolved via proper and extensive data partitioning. This way only those who should access can access data within a shared pool. Think of the provider as a condominium building, the partition as the walls, doors and windows of each condominium unit, and your data as furniture.
In this regard, it is important to note that there is no such thing as an infallible security system, whether it is a dedicated server or a hosted cloud application. The important thing is that there are regular upgrades and patches being released.
Leave a Reply