The US Federal Communications Commission has recently reported that "theft of
digital information has become the most commonly reported fraud, surpassing
physical theft." Businesses can do a lot to protect themselves. The FCC
issued a Tip Sheet for small businesses to promote employee security
training, firewalls, securing of WiFis, and more. But for business operating
in (or migrating to) cloud environments; data security, cloud computing
security issues, and challenges take on new meanings and require new
Security in the Cloud: Unique Challenges
In the cloud, data security poses new risks and challenges. We are no longer
concerned just with burglars breaking into our offices to steal computers,
but rather with the data belonging to complete systems deployed to the cloud.
When using public cloud infrastructure like that of AWS, VMware, Microsoft
Israel-based startup Porticor launches this week with technology aimed at
giving enterprises a way to encrypt data held in cloud computing services,
including those from Amazon and Rackspace.
Porticor Virtual Private Data is focused on protecting data at rest in
cloud-based computing centers where customers rent disk space or servers,
says Gilad Parann-Nissany, Porticor’s co-founder and CEO. What Porticor is
doing that’s distinct is relying on a so-called “split-key” method in
which the service to encrypt and decrypt doesn’t work unless both pieces of
the key are together.
The ... (more)
Transparent Data Encryption (TDE), sometimes also called Transparent Database
Encryption, is one way to encrypt database content. TDE offers encryption at
a column, table, and tablespace level. This makes TDE one of the more highly
configurable ways to encrypt database content, though some of these
configuration options come with a performance price.
While TDE is well known in the Data Center, bringing it to the realm of Cloud
Data Security does involve some new technical and operational questions.
Database products that support TDE
TDE is available as an “enterprise level” feature... (more)
Cloud encryption keeps coming up as one of the hottest topics for enterprises
migrating to the cloud. IT departments are constantly pushed to cut costs and
utilize compute resources more efficiently, hence cloud computing is the
natural evolution, yet at the same enterprises cannot compromise on cloud
security, and cloud encryption should be considered high on the list as it
segregates and “hides” your data from other virtual entities hosted on
the same physical cloud infrastructure.
What’s my cloud provider’s encryption approach?
Cloud data security and cloud encryption comes in ... (more)
(Originally posted by Lori Macvittie on rishidot.com)
Porticor, which earlier this year unveiled its split-key encryption
technology for securing cloud data has taken the next step in its quest to
assure users of the security of data in the cloud. In addition to
adding VMware private cloud to its portfolio of supported environments
(previously it supported only Amazon environments) it announced that it has
introduced homomorphic encryption into the equation, which further secures
one of the least often (and yet most important) aspects of cryptography –
the security of crypt... (more)