With companies increasingly worried about their data in the cloud, a number
of providers have cropped up to offer various types of encryption
Many studies have shown a chasm between cloud service providers and their
customers regarding who is responsible for the security of the customer’s
data: The providers put the responsibility in the hands of the customer, but
the customer usually disagrees.
According to a study conducted by the Ponemon Institute last year, for
example, nearly seven in 10 cloud providers put responsibility for the
security of a customer’s data with the customer. Only three in 10 customers
surveyed by Ponemon agreed.
“Providers are taking no responsibility,” says Pravin Kothari, founder
and CEO of CipherCloud, a cloud security provider. “If you are hosting in
the cloud, you have no visibility into the cloud provider and no control over
the data.... (more)
We’ve always had a close relationship with cloud providers, such as Amazon
Web Services and Red Hat OpenShift. Lately we have been hearing from an ever
wider spectrum of the cloud provider industry, and their cloud data security
requirements show a pattern.
Providers need to differentiate themselves in a competitive market, and they
need to ensure high security standards. Cloud data security is a must have,
but it’s also something that requires expertise.
Cloud providers are in the midst of a transition
Cloud providers are facing a market in transition, from the hosting model to
... (more)
Cloud computing brings many advantages including elasticity, flexibility, and
pay-per-use. But when looking at cloud security, and specifically encrypted
cloud storage the picture is much more complex.
Cloud security (in IaaS and PaaS scenarios) is a shared responsibility. The
cloud provider is responsible for securing the datacenter premise, the
virtualization layer, and the Host OS, but it is the cloud customer’s
responsibility to secure the host OS, work with an encrypted cloud storage
and secure the application level.
The missing piece by shel silverstein
Cloud data security... (more)
MySQL is probably the most popular open source database. While there is a
wealth of discussion online for MySQL database encryption,doing it right in a
cloud computing environment is tricky.
The discussion here is quite long, and contains a lot of interesting details.
So if you want a spoiler: it is possible to achieve true confidentiality for
your MySQL database today; using the industry best practice which is
split-key encryption.
Here’s why.
Cloud encryption for MySQL – Setting your goals
Before talking tech, it’s actually essential to understand what your goals
are, and the... (more)
With an objective to deliver an end-to-end cloud data security solution based
on Red Hat Enterprise Linux to Red Hat customers, Porticor – a company
offering cloud data security solutions – recently joined the Red Hat
Innovate program.
By joining the Red Hat Innovate program, Porticor is able to leverage the
power, openness and collaborative nature of open source communities,
including enhanced access to Red Hat collaboration initiatives and software
programs.
The Red Hat Innovate program offers its members with benefits such as joint
marketing opportunities; access to Red Hat ... (more)