![]() ![]() It’s certainly possible that your Private Cloud is more secure than some Public Clouds out there. I must admit that the title of this ZapFlash is actually an overgeneralization. You’ll have to excuse me, I’m in a particularly snarky mood today. The bottom line: VPCs are more about peace of mind than actually increasing security. And keep in mind, a single-tenant VPC will typically be substantially more expensive than a regular Public Cloud equivalent. They may only be marginally more secure than Public Cloud, as Public Cloud providers have generally done a bang-up job securing their multitenant architectures. If you read the first section of this ZapFlash and think that neither Public nor Private sounds secure enough, then a VPC may be the way to go. Furthermore, they may address specific regulatory or other governance issues that may prevent your organization from using a multitenant Public Cloud. VPCs may actually be the most secure option available today, as you have the best of both worlds. ![]() In some cases, those instances are physically separated from other customers, so that your stuff can’t end up on the same box as somebody else’s stuff. With a Virtual Private Cloud (VPC), a Public Cloud provider gives you a dedicated, secure connection (usually via a VPN) to your Public Cloud instances. ![]() And maybe you can-but don’t expect it to compare with the brand new shiny stuff going into Public Cloud data centers every day. I’m sure you can make do with what we have. Try this: ask your CIO for hundreds of thousands of dollars more to replace that three-year-old gear. Now you’re putting the final touches on your Private Cloud. May have older gear in use – you spent hundreds of thousands of dollars on security hardware.If all the tests pass, you’re secure, right? Maybe for like a minute, until the hackers figure out new attacks that didn’t make it into your security tests. Or maybe hire a third party to run them for you. Insufficient penetration testing – how do you test to make sure your Private Cloud is secure-or any other part of your IT infrastructure, for that matter? Simple: have your testers run a series of security tests.See that guy with the lampshade on his head? He’s responsible for Private Cloud security. Two hours in, take a look around the room. Unknown staff competence – sure, your organization has a lot of great security people.What about twenty-somethings downloading malware to the corporate network through their phones? Now the enterprise wants a Private Cloud, so they can put the whole kit and caboodle on their internal network for security purposes. If it’s on the internal network, it must be secure! As though they completely missed the Internet. Suffer from “perimeter complacency” – it’s amazing how many enterprises think that their DMZs and firewalls give them adequate security.Get the latest security gear due to economies of scale – How many Cloud data centers do the big Public Cloud providers own? And how fast are they building new ones? You don’t need to know the specifics to realize the answers are boatloads and wicked fast.If you’re a top Cloud security expert, where would you rather work: Amazon? Or some big insurance company or manufacturer or government agency? I thought so. Attract the best security people available – Public Cloud providers not only attract hackers, they attract talent.As a result, h4x0r types have been hammering on Amazon Web Services, Microsoft Azure, and all the others. Hackers know how to find them, realize there’s good stuff inside, and would be the envy of all their hacker pals if they were able to breach the Public Cloud’s defenses. Hardened thru continual hacking attempts – Public Cloud providers are a juicy target.Public Clouds are typically more secure than Private Clouds, for a number of reasons. The last thing the big vendors want is for their customers to move to Public Clouds-unless, of course, they belong to the vendor in question. After all, building a Private Cloud means buying a lot of new gear. In fact, large software and hardware vendors are largely responsible for the whole “Public Cloud is insecure” canard, introducing fear, uncertainty, and doubt (FUD) into the marketplace. Conventional wisdom, you say? Unfortunately, there is precious little wisdom available of any kind when it comes to Cloud Computing, let alone the conventional type! Why Public Clouds are More Secure than Private CloudsĬonventional wisdom would have you believe that Public Clouds are inherently insecure, and that the only way to meet your organization’s stringent security requirements in the Cloud is to implement your own Private Cloud. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |