Anshul Patel, profile picture
Uploaded byAnshul Patel
PPTX, PDF558 views

Cloud Computing Security

This document discusses security considerations for cloud computing instances, networking, and storage. It recommends using bastion servers for CLI access with key-based authentication over secure protocols. For instances, it suggests using LTS OS releases, security patches, and HIDS for critical hosts. Networking advice includes using subnets for applications, public subnets only for public-facing systems, and private subnets with NAT for non-public systems. The document also recommends encrypting sensitive stored data with role-based access controls and logging, and storing authentication materials securely.

Embed presentation

Download to read offline
Cloud Computing Security Anshul Patel
Security Classification ● Cloud Computing Instance Security ● Cloud Networking Security ● Cloud Storage Security
Cloud Computing Instance Security ● CLI access to computing instance should be done via Bastion server. ● CLI access to computing instance should be key based authentication and not password based. ● CLI access to computing instance should be encrypted and over secure protocol. ● Users should access the computing instance with their corresponding key. ● LTS releases of Operating System should be used. ● Periodic security patches should be applied via Configuration Management. ● For critical hosts, HIDS should be implemented.
Cloud Networking Security ● Applications/Platforms should have their corresponding subnets. ● Only Public facing Applications/Platforms should be in public subnets. (DMZ) ● Non-Public facing Applications/Platforms should be in private subnets with access to NAT gateway. ● Computing Instance Firewall should allow traffic from desired ports and hosts only. ● Sensitive information should always be transferred over SSL over public network.
Cloud Storage Security ● Sensitive information should be encrypted and stored at rest. ● Access to data should be either role based or policy based. ● Only targeted audience should be able to access the data. ● API keys, application passwords, certificates should be stored in Key Management System. ● Access (Read/Write) to sensitive data should be logged. ● Sensitive data should be replicated.

More Related Content

PDF
Kubermatic CNCF Webinar - start.kubermatic.pdf
byLibbySchulze
 
PPTX
Linux kit meetup_v1.0.0
byAnshul Patel
 
PPTX
Introduction to docker_notary_v1.0.0
byAnshul Patel
 
PPTX
Improve App Performance & Reliability with NGINX Amplify
byNGINX, Inc.
 
PDF
end-to-end-encryption-enroute-linkerd (1).pdf
byLibbySchulze
 
PPTX
Changing the world with ZeroVM and Swift
byJakub Krajcovic
 
PDF
Luigi Hostplumber intro slide.pptx (1).pdf
byLibbySchulze
 
PDF
Case Study: Utilizing Mirantis Fuel to install OpenStack Ansible
byTeK Charnsilp Chinprasert
 
Kubermatic CNCF Webinar - start.kubermatic.pdf
byLibbySchulze
 
Linux kit meetup_v1.0.0
byAnshul Patel
 
Introduction to docker_notary_v1.0.0
byAnshul Patel
 
Improve App Performance & Reliability with NGINX Amplify
byNGINX, Inc.
 
end-to-end-encryption-enroute-linkerd (1).pdf
byLibbySchulze
 
Changing the world with ZeroVM and Swift
byJakub Krajcovic
 
Luigi Hostplumber intro slide.pptx (1).pdf
byLibbySchulze
 
Case Study: Utilizing Mirantis Fuel to install OpenStack Ansible
byTeK Charnsilp Chinprasert
 

What's hot

PDF
WSO2 Microservices Framework for Java - Product Overview
byWSO2
 
PDF
Build your First IoT Application with IBM Watson IoT
byJanakiram MSV
 
PDF
KURMA - A Containerized Container Platform - KubeCon 2016
byApcera
 
PPTX
Introduction to OpenStack Cinder
bySean McGinnis
 
PPTX
Microservices - The good, The bad, The does and The don'ts
byFrederik Mogensen
 
PDF
Role Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport
byDevOps.com
 
PPTX
Kubernetes integration with ODL
byPrem Sankar Gopannan
 
PDF
Monitoring Highly Dynamic and Distributed Systems with NGINX Amplify
byNGINX, Inc.
 
PDF
Mastering OpenStack - Episode 02 - Simple Architectures
byRoozbeh Shafiee
 
PPTX
How to Adopt Infrastructure as Code
byNGINX, Inc.
 
PPTX
Cinder Updates - Liberty Edition
byOpenStack Foundation
 
PPTX
NGINX Microservices Reference Architecture: Ask Me Anything
byNGINX, Inc.
 
PDF
DevOps and OpenStack December 2012
byMatt Ray
 
PDF
Kuryr & Fuxi: OpenStack networking and storage for Docker Swarm containers
byAntoni Segura Puimedon
 
PDF
Open stack wtf_(1)
byIlya Sviridov
 
PDF
Meetup 22 - 04 - Logging and Monitoring at scale on Kubernetes
byVietnam Open Infrastructure User Group
 
PDF
Status of Embedded Linux
byLinuxCon ContainerCon CloudOpen China
 
PPTX
Cloud Solution Day 2016: Service Mesh for Kubernetes
byAWS Vietnam Community
 
PDF
6 open stack_swift_panoramic_view
byopenstackindia
 
PPTX
OpenStack Contribution Workflow
bySean McGinnis
 
WSO2 Microservices Framework for Java - Product Overview
byWSO2
 
Build your First IoT Application with IBM Watson IoT
byJanakiram MSV
 
KURMA - A Containerized Container Platform - KubeCon 2016
byApcera
 
Introduction to OpenStack Cinder
bySean McGinnis
 
Microservices - The good, The bad, The does and The don'ts
byFrederik Mogensen
 
Role Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport
byDevOps.com
 
Kubernetes integration with ODL
byPrem Sankar Gopannan
 
Monitoring Highly Dynamic and Distributed Systems with NGINX Amplify
byNGINX, Inc.
 
Mastering OpenStack - Episode 02 - Simple Architectures
byRoozbeh Shafiee
 
How to Adopt Infrastructure as Code
byNGINX, Inc.
 
Cinder Updates - Liberty Edition
byOpenStack Foundation
 
NGINX Microservices Reference Architecture: Ask Me Anything
byNGINX, Inc.
 
DevOps and OpenStack December 2012
byMatt Ray
 
Kuryr & Fuxi: OpenStack networking and storage for Docker Swarm containers
byAntoni Segura Puimedon
 
Open stack wtf_(1)
byIlya Sviridov
 
Meetup 22 - 04 - Logging and Monitoring at scale on Kubernetes
byVietnam Open Infrastructure User Group
 
Status of Embedded Linux
byLinuxCon ContainerCon CloudOpen China
 
Cloud Solution Day 2016: Service Mesh for Kubernetes
byAWS Vietnam Community
 
6 open stack_swift_panoramic_view
byopenstackindia
 
OpenStack Contribution Workflow
bySean McGinnis
 

Similar to Cloud Computing Security

PDF
Presentation on Cloud Security 101 - 2024
bySanjeev Kumar Jaiswal
 
PDF
How We Protect Our Business in the Cloud (The Smart Way)
byCyberShield IT
 
PPTX
Unit -3.pptx cloud Security unit -3 notes
byRamya Nellutla
 
PPTX
cloudsecurity and features-180522094041.pptx
byramprasadg2013
 
PDF
Cloud Security 101
bySanjeev Kumar Jaiswal
 
PPTX
I am sharing 'Unit-2' with youuuuuu.PPTX
bypadhaipadhai639
 
PDF
Top Cloud Infrastructure Practices And Strategies For Maximum Security.pdf
byForgeahead Solutions
 
PDF
Understanding Cloud Security - An In-Depth Exploration For Business Growth | ...
byUnited States Cybersecurity Institute (USCSI®)
 
PPTX
Cloud Security_ Unit 4
byIntegral university, India
 
PPTX
CLOUD SECURITY 117 presentation diploma ppt
bypateljainil1607
 
PPTX
Rik Ferguson
byCloudExpoEurope
 
PDF
Architecting Data Services for the Cloud: Security Considerations and Best Pr...
byAdnene Guabtni
 
DOCX
How to implement cloud computing security
byRandall Spence
 
PPTX
Security in Cloud Computing
byRohit Buddabathina
 
PPT
Effectively and Securely Using the Cloud Computing Paradigm
byfanc1985
 
PPTX
Cloud Security By Dr. Anton Ravindran
byGSTF
 
PDF
UNDERSTANDING CLOUD SECURITY- AN IN-DEPTH EXPLORATION FOR BUSINESS GROWTH.pdf
byUnited States Cybersecurity Institute (USCSI®)
 
PDF
The 3 Recommendations for Cloud Security
byVAST
 
PDF
ISACA Journal Publication - Does your Cloud have a Secure Lining? Shah Sheikh
byShah Sheikh
 
PPTX
Securing The Clouds Proactively-BlackisTech.pptx
byChinatu Uzuegbu
 
Presentation on Cloud Security 101 - 2024
bySanjeev Kumar Jaiswal
 
How We Protect Our Business in the Cloud (The Smart Way)
byCyberShield IT
 
Unit -3.pptx cloud Security unit -3 notes
byRamya Nellutla
 
cloudsecurity and features-180522094041.pptx
byramprasadg2013
 
Cloud Security 101
bySanjeev Kumar Jaiswal
 
I am sharing 'Unit-2' with youuuuuu.PPTX
bypadhaipadhai639
 
Top Cloud Infrastructure Practices And Strategies For Maximum Security.pdf
byForgeahead Solutions
 
Understanding Cloud Security - An In-Depth Exploration For Business Growth | ...
byUnited States Cybersecurity Institute (USCSI®)
 
Cloud Security_ Unit 4
byIntegral university, India
 
CLOUD SECURITY 117 presentation diploma ppt
bypateljainil1607
 
Rik Ferguson
byCloudExpoEurope
 
Architecting Data Services for the Cloud: Security Considerations and Best Pr...
byAdnene Guabtni
 
How to implement cloud computing security
byRandall Spence
 
Security in Cloud Computing
byRohit Buddabathina
 
Effectively and Securely Using the Cloud Computing Paradigm
byfanc1985
 
Cloud Security By Dr. Anton Ravindran
byGSTF
 
UNDERSTANDING CLOUD SECURITY- AN IN-DEPTH EXPLORATION FOR BUSINESS GROWTH.pdf
byUnited States Cybersecurity Institute (USCSI®)
 
The 3 Recommendations for Cloud Security
byVAST
 
ISACA Journal Publication - Does your Cloud have a Secure Lining? Shah Sheikh
byShah Sheikh
 
Securing The Clouds Proactively-BlackisTech.pptx
byChinatu Uzuegbu
 

More from Anshul Patel

PDF
Open Source Identity and Access management with Keycloak.pdf
byAnshul Patel
 
PDF
Safeguarding Container Supply Chain - Anshul Patel
byAnshul Patel
 
PPTX
Chaos engineering with Litmus Chaos Framework
byAnshul Patel
 
PDF
Docker Fundamentals
byAnshul Patel
 
PPTX
Chaos Engineering with Gremlin Platform
byAnshul Patel
 
PPTX
Meetup on Apache Zookeeper
byAnshul Patel
 
PDF
Chaos Engineering
byAnshul Patel
 
PPTX
Linux Operating System Fundamentals
byAnshul Patel
 
PPTX
Building CLI Applications with Golang
byAnshul Patel
 
PPTX
AWS ECS Meetup Talentica
byAnshul Patel
 
Open Source Identity and Access management with Keycloak.pdf
byAnshul Patel
 
Safeguarding Container Supply Chain - Anshul Patel
byAnshul Patel
 
Chaos engineering with Litmus Chaos Framework
byAnshul Patel
 
Docker Fundamentals
byAnshul Patel
 
Chaos Engineering with Gremlin Platform
byAnshul Patel
 
Meetup on Apache Zookeeper
byAnshul Patel
 
Chaos Engineering
byAnshul Patel
 
Linux Operating System Fundamentals
byAnshul Patel
 
Building CLI Applications with Golang
byAnshul Patel
 
AWS ECS Meetup Talentica
byAnshul Patel
 

Recently uploaded

PDF
action man.pdf album sa slicicama panini...
byStefanFilipovic9
 
PPTX
Creating content that converts into leads.
bySEONutri
 
PDF
Parallel and Distributed Databases NOTES.pdf
bywrushabsirsat
 
PDF
5 Best FREE Anti-Detect Browsers in 2026
byRakeshChauhan821593
 
PDF
alfred jonatan kvak panini album.pdf slicice
byStefanFilipovic9
 
PDF
album panini Evoksi.pdf panini album slicice
byStefanFilipovic9
 
PDF
anastasia panini album.pdf album sa slicicama
byStefanFilipovic9
 
PDF
Tour & Travel App Development Explained- Features, Costs, and Technologies Us...
byMike Brown
 
PDF
The Role of Micro-interactions in Modern Web Design
bydigitalcrafters0810
 
PDF
11 Best Sites for Buying Aged Reddit Accounts with Karma.pdf
byallseoit 143
 
action man.pdf album sa slicicama panini...
byStefanFilipovic9
 
Creating content that converts into leads.
bySEONutri
 
Parallel and Distributed Databases NOTES.pdf
bywrushabsirsat
 
5 Best FREE Anti-Detect Browsers in 2026
byRakeshChauhan821593
 
alfred jonatan kvak panini album.pdf slicice
byStefanFilipovic9
 
album panini Evoksi.pdf panini album slicice
byStefanFilipovic9
 
anastasia panini album.pdf album sa slicicama
byStefanFilipovic9
 
Tour & Travel App Development Explained- Features, Costs, and Technologies Us...
byMike Brown
 
The Role of Micro-interactions in Modern Web Design
bydigitalcrafters0810
 
11 Best Sites for Buying Aged Reddit Accounts with Karma.pdf
byallseoit 143
 

Cloud Computing Security

  • 1.
  • 2.
    Security Classification ● CloudComputing Instance Security ● Cloud Networking Security ● Cloud Storage Security
  • 3.
    Cloud Computing InstanceSecurity ● CLI access to computing instance should be done via Bastion server. ● CLI access to computing instance should be key based authentication and not password based. ● CLI access to computing instance should be encrypted and over secure protocol. ● Users should access the computing instance with their corresponding key. ● LTS releases of Operating System should be used. ● Periodic security patches should be applied via Configuration Management. ● For critical hosts, HIDS should be implemented.
  • 4.
    Cloud Networking Security ●Applications/Platforms should have their corresponding subnets. ● Only Public facing Applications/Platforms should be in public subnets. (DMZ) ● Non-Public facing Applications/Platforms should be in private subnets with access to NAT gateway. ● Computing Instance Firewall should allow traffic from desired ports and hosts only. ● Sensitive information should always be transferred over SSL over public network.
  • 5.
    Cloud Storage Security ●Sensitive information should be encrypted and stored at rest. ● Access to data should be either role based or policy based. ● Only targeted audience should be able to access the data. ● API keys, application passwords, certificates should be stored in Key Management System. ● Access (Read/Write) to sensitive data should be logged. ● Sensitive data should be replicated.