Many applications have a database at their core, and very often, this
database is the mature and popular MySQL. Often it is the most sensitive
information that gets stored in the database: customer details, credit card
numbers, passwords (or password hashes) and so on. MySQL encryption is an
industry best practice.MySQL Encryption: Why?Obviously, the sensitive
information within the database is enough motivation for secure MySQL
Encryption.Often there are also requirements by regulatory bodies to encrypt
the database-resident data, either applying to the entire database or to
selected tables or columns.There is often another motivation to encrypt some
of the data: segregation between users, between applications, and most often
between administrative users – such as the Database Administrator – and
the business data. Without encryption, the DBA can read any of the da... (more)
Strong data encryption is a critical line of defense against cyber criminals
and spies. Amazon has always taken care of the front lines with their strong
infrastructure with security mechanisms like multi-factor access control
systems in AWS datacenters, availability zones, built-in firewalls, private
Now, with the addition of Server Side Encryption with Customer-Provided Keys,
Amazon protects the data you store with Amazon S3 server side encryption.
Even better, Amazon encrypts your data using a key you provide; a key that is
never stored by Amazon. Thus, they hav... (more)
Encrypting cloud storage is now in the mainstream, the accepted best practice
and a business imperative. Across the world and all industries, enterprises
need to encrypt cloud data to stay compliant, safe and competitive.
There are several offerings of encrypted cloud storage for enterprises. And
yet, many enterprises are still doing it wrong.
Which of these pitfalls has your company fallen into?
Encrypted Cloud Storage Mistakes
1. Allowing Others to Control and Access Stored Data
Whether they do so knowingly or naively, by using a provider to encrypt data
and manage encryption key... (more)
In a Feb 2014 survey, 94 percent of organizations surveyed reported running
applications or experimenting with infrastructure-as-a-service. According
to research firm Nasumi, there is over one exabyte currently stored in the
cloud. An exabyte is over a billion GB. Considering the amount of data in
the cloud and the growing rate of adoption for sensitive use cases, it is
natural that securing our data in the cloud is a concern. But, cloud
security, though rightfully a central concern, should not be a hindrance to
aggressively moving workloads and applications to the cloud.
Amazon’s cloud service still needs security improvements says Gartner
By Ellen Messmer
The Amazon AWS cloud service is fine for enterprise workloads and applying
security controls such as encryption and firewalls is possible, though more
security vendors need to step up to support Amazon’s EC2 service, according
to the Gartner analysis presented today.
In his presentation at the Gartner Security and Risk management Summit 2014,
analyst Neil MacDonald said there’s a misperception among many IT managers
that Amazon’s EC2 is somehow a consumer-grade cloud service. “It’s