Security Structure of the Cloud
Cloud Computing SMEs also rely on the computing power from the cloud to take advantage of advantages such as higher efficiency, better scalability and increased agility.
Despite all its advantages, Cloud Computing still presents challenges. And it is the customer’s responsibility to secure their data in Cloud environments. Companies continue to use Cloud Computing at a rapid pace, and providers of Public Cloud services such as Amazon Web Services, Microsoft Azure or Google Cloud Platform are expanding-not least in the Swiss market.
Although this proximity entails lower latency times, critical considerations are certainly appropriate with regard to legal and data security. Outsourcing to the Public Cloud can be useful for data and Workloads that are not particularly worthy of protection. For sensitive Workloads and data with high Compliance requirements, specific requirements of national regulation must be met.
Whether you choose a Public, Private or Hybrid Cloud model, one thing remains the same: it is the customer’s responsibility to secure the data in Cloud environments. In Cloud security, the shared responsibilities model applies: The Cloud Provider is responsible for the security of the Cloud infrastructure it provides; the company takes care of the data and applications in the Cloud.
Further Development of the Attack Routes
In most cases, multiple users access the Cloud, which makes data encryption, access control and associated rights, and identity management essential. For this purpose, both Cloud users and providers can establish measures from a modular set of rules, processes and technical possibilities to ensure that data can be safely managed and used, applications are sufficiently protected and legal requirements are complied with.
Cloud Security includes security for data, platforms, applications, network structures and accesses as well as servers, physical security of the data centre and comprehensive control of keys and access privileges. Malware and attack paths are constantly evolving, which makes neglecting Cloud Security unthinkable. The associated Hardware (provider side) must also be secured – and this already with the Design. Security vulnerabilities that are embedded in the Hardware architecture cannot be closed without a replacement of the Hardware, even with subsequent Updates-keyword Meltdown or Spectre. Millions of the affected Chips are installed ex works.
In many cases, companies still rely on security measures that correspond to attacks of the so-called second or third Generation and can repel them. However, Cyber-attacks of the current fifth Generation are modern Hacking Tools that enable criminals to proceed quickly and to infect companies and their networks. An integrated and uniform security structure is needed to ward off these multi-vector attacks-previous generations of Security technologies designed solely for attack detection are no match for modern attacks. Ideally, a Cloud Security solution is based on different principles. Security services should be automatically inserted into the network and configured accordingly. IT Tools should be easily integrated into the Cloud and security policies should be implicitly adapted to securely increase the number of applications as needed.
In addition to Compliance, transparency in the event of an attack is also an important feature. It must be recognized, which business unit is affected by which Problem, in order to be able to carry out a corresponding problem resolution and corresponding Analyses. In addition, the security management should be set up centrally and uniformly in order to inform about all processes in a timely manner and to be able to initiate measures accordingly.
The security Management should be centrally and uniformly structured.
The safety structure is therefore ideally based on a combination of deterrent, preventative, preventive, detecting and corrective procedures. This means that both warnings are given to cyber-criminals against unauthorized intrusion and that preventive, reactive and impact-reducing measures are taken in order to be able to use the advantages of a cloud-based infrastructure without hesitation. Automated deployment and orchestration as well as centralized management of the physical and virtual environment are essential features of a functioning security structure.