Your SlideShare is downloading. ×
0
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Cloudtrust 091204053223 Phpapp01
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

Cloudtrust 091204053223 Phpapp01

346

Published on

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
346
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
25
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. InCloud<br />WeTrust<br />Not so fast!<br />“I’m Cloud Confused” series<br />
  • 2. If you’re new to Cloud Computing, <br />or just confused…<br />Please try<br />http://www.slideshare.net/Guppers/im-cloud-confused<br />
  • 3. the biggest Cloud Computing <br />concerns are…<br />Security <br />Privacy<br />
  • 4. Fundamental Question<br />Is Cloud Computing<br />security weaker<br />than <br />EnterpriseSecurity? <br />
  • 5. a Typical Reaction<br />when asks about security <br />SHA256<br />X.509<br />Salt<br />AES<br />PKCS<br />IV<br />DES<br />
  • 6. the street<br />Security is….<br />Boring<br />Heard it on<br />Complex<br />Hacker stuff<br />Kills usability<br />Necessary Evil<br />Complicates my life<br />
  • 7. Let’s make it simple<br />Child Play<br />
  • 8. Let’s pick a simple story<br />You worked hard this year, <br />you bought a pile of gold bars<br />
  • 9. Where should you storethem? <br />House?<br />Bank?<br />Your House<br />Your Bank<br />
  • 10. What does this thief think?<br />…<br />
  • 11. Plenty of valuableassets, <br />but it may have elaborate <br />securityprotection in place<br />Bank<br />
  • 12. Some valuableassets,<br />security protection may not<br />as elaborate<br />House<br />
  • 13. What would you do to boost<br />your protection? <br />
  • 14. Yes, build layers of defense <br />
  • 15. Put the fenceup<br />Put <br />
  • 16. Install additional door locks <br />
  • 17. Let’s also install alarmsystem <br />and surveillancecameras<br />
  • 18. Feel Better? <br />
  • 19. Oh, don’t forget about<br />adisasterplan <br />
  • 20. Knock, knock<br />Who’s there?<br />
  • 21. You control who hasaccessto your house<br />
  • 22. And, pretty sure <br />yourinner circle won’t steal from you<br />
  • 23. Let’s translate…<br />Corporate Data<br />IT Assets(Software, Hardware)<br />Employees<br />
  • 24. You feel totally in control <br />
  • 25. Whyin the world<br />you would give up control?<br />
  • 26. ..and many eyes aim at big prizes<br />
  • 27. when delegating security to other…<br />a few things to consider….<br />
  • 28. It’s all about<br />It’s all about Trust<br />Trust<br />
  • 29. Do you trust them that they’ll still be in the <br />business <br />tomorrow?<br />Help!<br />Ex-Cloud Provider will<br />work for Food<br />
  • 30. Didn’t we see this before? <br />
  • 31. Recommendation<br />Pick servicesthat are<br />backed by major players<br />
  • 32. Data Lost <br />It is unlikely. <br />Reputable Cloud Providers copy data 3-4 times<br />
  • 33. However, it is normal to store <br />highly value-able datain <br />two or more different cloud providers<br />Data<br />Service<br />replicated<br />replicated<br />Cloud Provider 1<br />Cloud Provider 2<br />
  • 34. Data Privacy<br />Confidentiality <br />
  • 35. Data in Transit<br />data<br />Internet<br />Cloud Provider <br />It can be secured using encryption technology, e.g. SSL<br />It is used especially for sensitive data<br />
  • 36. Data at Rest<br />Cloud Provider <br />Biggest prize for attackers!<br />More and more cloud providers are developing nativedata encryption <br />Even if it is stolen, it will be useless for attackers<br />
  • 37. You can pick whereyour data resides<br />
  • 38. Physical Access <br />Cloud Provider<br />Data Center<br />
  • 39. Security processes are typically <br />in place for physical access <br />Background Check<br />Two factor authentication<br />Intrusion detection system<br />Audit<br />Video surveillance <br />
  • 40. Multi tenant<br />Infrastructure<br />Corporate 4<br />Corporate 3<br />Corporate 2<br />Corporate 1<br />…infrastructure is shared by many corporations (tenant)<br />
  • 41. Will vulnerabilityin one company <br />affect others in the cloud?<br />
  • 42. Cloud Providers use <br />isolationtechniques<br />Data Isolation<br />Virtualization<br />Computing Isolation<br />a vulnerability in one tenant has little impact on other tenants<br />
  • 43. Identity<br />
  • 44. Unwanted guest<br />Employees<br />Cloud Computing<br />Suppliers<br />Customers<br />
  • 45. Potential External Entry Points<br />Web SiteHTTP(S)<br />Database<br />Queue<br />Web ServicesHTTP(S)<br />Custom<br />Blob(Files, Docs)<br />Worker VM<br />XYZCorp.com<br />
  • 46. Typical access to a web site <br />hosted in the Cloud<br />
  • 47. Example of <br />astronger authentication process<br />for sensitive web site<br />A8KP<br />
  • 48. Accessing other Cloud Services<br />(Example)<br />Address<br />https://aservice.mycloudprov.net<br />Key2<br />Key1<br />R3ZhU3xAmLIEAnRRyiMHx…<br />xFAlNx4VeRDGQgSQI…<br />
  • 49. Control which networkor machineshave access <br />98.237.178.63<br />83.231.32.17<br />
  • 50. Let’s look at from<br /> cloud infrastructure provider’s<br />perspectives<br />
  • 51. TypicalSLAs to compete<br />around<br />99.95<br />% uptime<br />
  • 52. It is in their best interest to <br />maintain reputation, <br />best security practice<br />their business depends on it<br />
  • 53. Headlines they try hard to avoid<br />Data is stolen from ….<br />…. has been down<br />since yesterday<br />Security breach at data center….<br />
  • 54. Should you migrate all to Cloud? <br />
  • 55. NO<br />Cloud Computing <br />is still at infancy <br />
  • 56. Trust is Always Earned,<br />NeverGiven<br />---R. Williams<br />
  • 57. Migrate <br />non-critical business operations, <br />departmental level data first <br />and Observe!<br />Enterprise<br />
  • 58. It’s not as difficultas you think<br />simplicity, agility and elasticity <br />(another topic for further discussion)<br />
  • 59. Excited about new possibilities in <br />cloudspace?<br />
  • 60. Follow discussions and<br />presentations on<br />facebook <br />“I’m Cloud Confused”<br />http://www.facebook.com/pages/Im-Cloud-Confused/219897591208?ref=ts<br />
  • 61. You<br />Us<br />10simple questions,2minutes to completehttp://surveymonkey.com/s.aspx?sm=NrndNTZkoG6j8BWJYejC1g_3d_3d<br />Will Publish Results on<br />facebook <br />
  • 62. Want to try Cloudfor your business now ?<br />Only a few minutes to setup<br />http://www.slideshare.net/Guppers/guppers-3-minute-walkthrough<br />
  • 63. For more presentations like this, visit, <br />follow, subscribe to: <br />Blog: http://www.andyharjanto.com<br />Twitter: http://twitter.com/harjanto<br />Contact: andy@guppers.com<br />

×