Scaling Hailo in the cloud @ davegardnerisme Cloud Expo Europe January 2013
Cloud Expo Europe 2014: Practical methods to improve your security in the cloud
-
Upload
databarracks -
Category
Technology
-
view
244 -
download
0
description
Transcript of Cloud Expo Europe 2014: Practical methods to improve your security in the cloud
![Page 1: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/1.jpg)
Practical methods to improve your security in the cloud
![Page 2: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/2.jpg)
www.databarracks.com | 2www.databarracks.com | 2
WHO WE ARE
Mark ThomasSolutions Architect
Formerly Director of Cloud Professional Services, EMEA at Virtustream, Mark is the Solutions Architect at Databarracks. An expert in cloud technology, data centre infrastructure and virtualisation, Mark has worked with major clients such as HSBC, Field Fisher Waterhouse and Allied Irish Bank.
![Page 3: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/3.jpg)
www.databarracks.com | 3
About Databarracks
• Nuclear bunker data centre,
certified & accredited
Secure & Compliant
• Pedigree and understanding of storage
High Performance & Flexibility
![Page 4: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/4.jpg)
www.databarracks.com | 4
Databarracks customers
![Page 5: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/5.jpg)
Security – from the service provider
![Page 6: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/6.jpg)
www.databarracks.com | 6www.databarracks.com | 6
Data centres & locations
![Page 7: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/7.jpg)
www.databarracks.com | 7www.databarracks.com | 7
Certifications
• Externally audited yearly
• Penetration tested yearly
![Page 8: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/8.jpg)
This is what we do – but what can you do?
![Page 9: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/9.jpg)
www.databarracks.com | 9www.databarracks.com | 9
Pen Testing
Supplier testing
• Required for supplier compliance
• Testing of the entire platform
Your own testing
• May be required for your specific compliance
• Test your exact servers
![Page 10: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/10.jpg)
www.databarracks.com | 10www.databarracks.com | 10
Access
THIS IS OFTEN THE WEAKEST LINK
Federation• Integrating your AD into access• Manage access across multiple clouds• Works for IaaS, PaaS & SaaS
![Page 11: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/11.jpg)
www.databarracks.com | 11www.databarracks.com | 11
Access2 factor authentication• Knowledge factor• Possession factor
• Again – IaaS, PaaS & SaaS
This is now very common – online banking and even Gmail use it
= LESS RESISTANCE FROM USERS
![Page 12: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/12.jpg)
www.databarracks.com | 12www.databarracks.com | 12
Firewalls
(Just for Infrastructure as a Service)
• Ring-fence your environment• Advanced intrusion detection & prevention
![Page 13: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/13.jpg)
www.databarracks.com | 13www.databarracks.com | 13
Encryption
What, where and when?• VPNs• Arrays• Files within the VM• The entire VM
www.databarracks.com | 13
![Page 14: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/14.jpg)
www.databarracks.com | 14www.databarracks.com | 14
Encryption
VPN• Why?• Why not?• Already doing it?• Can I do it myself?
www.databarracks.com | 14
![Page 15: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/15.jpg)
www.databarracks.com | 15www.databarracks.com | 15
Encryption
Array encryption• Why?• Why not?• Already doing it?• Can I do it myself?
www.databarracks.com | 15
![Page 16: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/16.jpg)
www.databarracks.com | 16www.databarracks.com | 16
Encryption
Files within the VMs• Why?• Why not?• Already doing it?• Can I do it myself?
www.databarracks.com | 16
![Page 17: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/17.jpg)
www.databarracks.com | 17www.databarracks.com | 17
Encryption
The entire VM• Why?• Why not?• Already doing it?• Can I do it myself?
www.databarracks.com | 17
![Page 18: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/18.jpg)
Can you take an unsecured cloud and make it secure?
![Page 19: Cloud Expo Europe 2014: Practical methods to improve your security in the cloud](https://reader033.fdocuments.net/reader033/viewer/2022042606/54853ea0b4af9f9b428b45d2/html5/thumbnails/19.jpg)
Thank you