Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cloud Computing Security: Mapping Concepts to Practical Techniques

Published byVeronika Darmali Modified over 6 years ago

Similar presentations

Presentation on theme: "Cloud Computing Security: Mapping Concepts to Practical Techniques"— Presentation transcript:

1 Cloud Computing Security: Mapping Concepts to Practical Techniques
Gilad Parann-Nissany September 6th, 2010 Cloud Computing Security: Mapping Concepts to Practical Techniques Copyright 2009, 2010 ©Porticor 9/21/2018

2 Earlier today, CSA talked about…
Pay as you go Reasonable cost On-demand Self service Elastic Scale My precious data in a public place? Who do I trust? How easy to hack? Is encryption enough? Can I control it? Many considerations exist even before clouds Some considerations really are new Copyright 2009, 2010 © Porticor 9/21/2018

3 Modern threats… Its far too easy to be a bad guy
Hacking is a business today, often involving professional criminals Interesting fact: biggest cloud in the world belongs to the crooks Number of Systems: 6,400,000 Number of CPUs: 18,000,000+ Bandwidth: 28 Terabits Facilities: 230 Countries …the Conficker worm  R. Joffe Copyright 2009, 2010 ©Porticor 9/21/2018

4 How much (cloud) security do I really need?
Draw your conclusions Do I need security? What needs most security (most valuable)? Where do I need security most? (store, comm, …) Evaluate service, functionality & data flow Cloud providers, service models Detailed analysis of where your data will be “at rest” and during communication Evaluate asset and attractiveness of target Money value Non-monetary value Nuisance value For whom? (pros? Insiders? kids?) Identify the asset for the cloud deployment Data Applications, Functions, Processes Copyright 2009, 2010 ©Porticor 9/21/2018

5 Governance: managing security & compliance
by clarity Governance: managing security & compliance Risk management Legal and Electronic Discovery Compliance and Audit Information life cycle Standards Ops in cloud Traditional Security Data Center Incident Mgmt Application Security Encryption and Keys Identity and Access Virtualization Cloud Arch. I/P/SaaS Application Information Management Network Trust Storage Physical Copyright 2009, 2010 ©Porticor 9/21/2018

6 Applying Security Concepts to Public Clouds
Some pretty new stuff Secure distributed data storage Keys management Hypervisors and virtual machines Physical security of cloud environments Role of encryption changes New data protection measures emerge (i.e. fragmentation) Some known concepts translate to cloud with a twist APIs SaaS security Usage of IaaS Identity Access Management Policy management Denial of Service prevention Web Application Firewall Firewall Virtual Private Networks Database Firewall Intrusion Detection and Prevention (IDS/IPS) Logging and Log forensics Security Information Management Data Leak Prevention Scanning for exploits Scanning for virus *courtesy CSA Copyright 2009, 2010 ©Porticor 9/21/2018

7 Demo: known concepts that translate to cloud with a twist
Firewalls in AWS Application firewall in AWS Role of APIs Role of IaaS Copyright 2009, 2010 ©Porticor 9/21/2018

8 Understand your complete problem domain
Understand the value of your data and service: sec should be cost effective Understand your complete problem domain Governance & Measurement Architecture & Technology Specifics of your application Answers Some take known concepts and add APIs, use SaaS and IaaS Some are truly new Cloud Operations really is new! Map out – what’s relevant for you Roll your own – or work with someone who has experience? Copyright 2009, 2010 ©Porticor 9/21/2018

9 Thank you Questions? http://www.porticor.com contact@porticor.com
Copyright 2009, 2010 ©Porticor 9/21/2018

Download ppt "Cloud Computing Security: Mapping Concepts to Practical Techniques"

Similar presentations

© 2012 Open Grid Forum Simplifying Inter-Clouds October 10, 2012 Hyatt Regency Hotel Chicago, Illinois, USA.

© 2012 Open Grid Forum Simplifying Inter-Clouds October 10, 2012 Hyatt Regency Hotel Chicago, Illinois, USA.
The Threat Within September 2004. Copyright © 2004 Q1 Labs. All Rights Reserved Agenda Customer Pain Industry Solutions Network Behavior Enforcement Example.

The Threat Within September Copyright © 2004 Q1 Labs. All Rights Reserved Agenda Customer Pain Industry Solutions Network Behavior Enforcement Example.
Security, Privacy and the Cloud Connecticut Community Providers’ Association June 20, 2014 Steven R Bulmer, VP of Professional Services.

Security, Privacy and the Cloud Connecticut Community Providers’ Association June 20, 2014 Steven R Bulmer, VP of Professional Services.
Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –

Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –
An Approach to Secure Cloud Computing Architectures By Y. Serge Joseph FAU security Group February 24th, 2011.

An Approach to Secure Cloud Computing Architectures By Y. Serge Joseph FAU security Group February 24th, 2011.
1 Security on OpenStack 11/7/2013 Brian Chong – Global Technology Strategist.

1 Security on OpenStack 11/7/2013 Brian Chong – Global Technology Strategist.
Security in the Cloud: Can You Trust What You Can’t Touch? Rob Johnson Security Architect, Cloud Engineering Unisys Corp.

Security in the Cloud: Can You Trust What You Can’t Touch? Rob Johnson Security Architect, Cloud Engineering Unisys Corp.
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
Government Technology Bay Area Technology Forum November 5, 2009 Presented By: Jon Fullinwider Director, Local Government Citrix Systems, Inc. Presented.

Government Technology Bay Area Technology Forum November 5, 2009 Presented By: Jon Fullinwider Director, Local Government Citrix Systems, Inc. Presented.
Supervisor : Mr. Hadi Salimi Advanced Topics in Information Systems Mazandaran University of Science and Technology February 4, 2011 Survey on Cloud Computing.

Supervisor : Mr. Hadi Salimi Advanced Topics in Information Systems Mazandaran University of Science and Technology February 4, 2011 Survey on Cloud Computing.
INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.

INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.
Copyright Marchany 2010 Cloud Computing Security Issues Randy Marchany, VA Tech IT Security,

Copyright Marchany 2010 Cloud Computing Security Issues Randy Marchany, VA Tech IT Security,
Securing and Auditing Cloud Computing Jason Alexander Chief Information Security Officer.

Securing and Auditing Cloud Computing Jason Alexander Chief Information Security Officer.
Security Framework For Cloud Computing -Sharath Reddy Gajjala.

Security Framework For Cloud Computing -Sharath Reddy Gajjala.
MIGRATING INTO A CLOUD P. Sai Kiran. 2 Cloud Computing Definition “It is a techno-business disruptive model of using distributed large-scale data centers.

MIGRATING INTO A CLOUD P. Sai Kiran. 2 Cloud Computing Definition “It is a techno-business disruptive model of using distributed large-scale data centers.
Security issues in the Cloud Presentation for CloudCamp 2012 (Lagos) Christopher Odutola FVC Inc. Dubai.

Security issues in the Cloud Presentation for CloudCamp 2012 (Lagos) Christopher Odutola FVC Inc. Dubai.
© 2010 IBM Corporation Cloudy with a chance of security Information security in virtual environments Johan Celis Security Solutions Architect EMEA IBM.

© 2010 IBM Corporation Cloudy with a chance of security Information security in virtual environments Johan Celis Security Solutions Architect EMEA IBM.
SEC835 Database and Web application security Information Security Architecture.

SEC835 Database and Web application security Information Security Architecture.
SECURITY IN CLOUD COMPUTING By Bina Bhaskar Anand Mukundan.

SECURITY IN CLOUD COMPUTING By Bina Bhaskar Anand Mukundan.
Computer Crime and Information Technology Security

Computer Crime and Information Technology Security

Similar presentations

Ads by Google