Welcome!

Every Cloud needs a Silver Lining

Gilad Parann-Nissany

Subscribe to Gilad Parann-Nissany: eMailAlertsEmail Alerts
Get Gilad Parann-Nissany via: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories by Gilad Parann-Nissany

Many applications have a database at their core, and very often, this database is the mature and popular MySQL. Often it is the most sensitive information that gets stored in the database: customer details, credit card numbers, passwords (or password hashes) and so on. MySQL encryption is an industry best practice.MySQL Encryption: Why?Obviously, the sensitive information within the database is enough motivation for secure MySQL Encryption.Often there are also requirements by regulatory bodies to encrypt the database-resident data, either applying to the entire database or to selected tables or columns.There is often another motivation to encrypt some of the data: segregation between users, between applications, and most often between administrative users – such as the Database Administrator – and the business data. Without encryption, the DBA can read any of the da... (more)

Amazon S3 Server Side Encryption & Software Defined Key Management

Strong data encryption is a critical line of defense against cyber criminals and spies. Amazon has always taken care of the front lines with their strong infrastructure with security mechanisms like multi-factor access control systems in AWS datacenters, availability zones, built-in firewalls, private subnets, etc. Now, with the addition of Server Side Encryption with Customer-Provided Keys, Amazon protects the data you store with Amazon S3 server side encryption. Even better, Amazon encrypts your data using a key you provide; a key that is never stored by Amazon. Thus, they hav... (more)

@CloudExpo | Enterprises Are Doing Encrypted #Cloud Storage Wrong

Encrypting cloud storage is now in the mainstream, the accepted best practice and a business imperative. Across the world and all industries, enterprises need to encrypt cloud data to stay compliant, safe and competitive. There are several offerings of encrypted cloud storage for enterprises. And yet, many enterprises are still doing it wrong. Which of these pitfalls has your company fallen into? Encrypted Cloud Storage Mistakes 1. Allowing Others to Control and Access Stored Data Whether they do so knowingly or naively, by using a provider to encrypt data and manage encryption key... (more)

Cloud Security Myths: Busted

In a Feb 2014 survey, 94 percent of organizations surveyed reported running applications or experimenting with infrastructure-as-a-service.[1] According to research firm Nasumi, there is over one exabyte currently stored in the cloud. An exabyte is over a billion GB.[2] Considering the amount of data in the cloud and the growing rate of adoption for sensitive use cases, it is natural that securing our data in the cloud is a concern. But, cloud security, though rightfully a central concern, should not be a hindrance to aggressively moving workloads and applications to the cloud. ... (more)

Gartner: Best practices for Amazon AWS securit

Amazon’s cloud service still needs security improvements says Gartner analyst. By Ellen Messmer The Amazon AWS cloud service is fine for enterprise workloads and applying security controls such as encryption and firewalls is possible, though more security vendors need to step up to support Amazon’s EC2 service, according to the Gartner analysis presented today. In his presentation at the Gartner Security and Risk management Summit 2014, analyst Neil MacDonald said there’s a misperception among many IT managers that Amazon’s EC2 is somehow a consumer-grade cloud service. “It’s d... (more)