Understanding Cloud Vulnerabilities

The cloud is not always the target

By Unitiv Blog	Article Rating:
December 19, 2012 10:00 AM EST	Reads:	2,399

Related
Print
Email
Feedback
Add This
Blog This

It isn’t so much that cloud computing solutions are more vulnerable than traditional solutions; rather, cloud vulnerabilities take a much different form (and can occur on a much wider scale) than traditional security vulnerabilities.

Up to this point, most of the major issues with cloud providers have had more to do with outages rather than data breaches. That doesn’t mean there are no risks in the cloud, but that the form of cloud attacks may be different than traditional attacks.

The cloud is not always the target

Keep in mind that, in terms of the very public cloud security breaches such as we saw in 2011 with Sony, the cloud itself isn’t necessarily the target. In some cases, it’s actually part of a hacker’s toolset.

Hackers in that instance used stolen credit card numbers to rent Amazon cloud servers to use as an attack on Sony. The same resources that the cloud offers to legitimate organizations can also be purchased by cyber-criminals.

What makes the cloud so vulnerable

Part of the reason that cloud computing solutions are as robust as they are from the security perspective is that cloud providers are highly motivated to create secure environments. Networks aren’t isolated anymore. Once the Internet took hold, company networks became connected with public infrastructure, and cloud providers were there to make it happen.

The biggest weaknesses of the cloud, however, are basic issues that are often easily resolved. Weak authentication protocols, an open management port, or the need to manage cloud resources remotely are all reasons why the cloud can become vulnerable. Hackers are recognizing all of these open ports, and starting to use them.

CIO, CTO & Developer Resources

How these vulnerabilities affect your organization

While most surveyed companies say they believe cloud providers can provide a truly secure environment, nearly two thirds of those companies said that they wouldn’t put corporate finance information in the cloud. Most keep credit cards out of the cloud. The same is true of HR info and other confidential resources.

Ultimately, cloud security is improving as time goes on. When your organization is looking at a cloud solution, ask the tough questions about security. If possible, get the provider to build security measures into the SLA, too.

Read the original blog entry...

Published December 19, 2012 – Reads 2,399
Copyright © 2012 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.

Related
Print
Email
Feedback
Add This
Blog This

More Stories By Unitiv Blog

Unitiv, Inc., is a professional provider of enterprise IT solutions. Unitiv delivers its services from its headquarters in Alpharetta, Georgia, USA, and its regional office in Iselin, New Jersey, USA. Unitiv provides a strategic approach to its service delivery, focusing on three core components: People, Products, and Processes. The People to advise and support customers. The Products to design and build solutions. The Processes to govern and manage post-implementation operations.

Comments

RightScale Adds to "Multi-Cloud" Discussion

By Roger Strukhoff

cloudhosting14 wrote: As you would already know that managed hosting itself is another form of Cloud hosting in which the system administrations of servers is looked upon by the CPs. Similar is the case with managed multi Cloud hosting. You can very well understand how a big burden it would be to manage multi cloud servers for organization; this is why a service known as managed multi Cloud is provided to these users. This service ensures them the seam less running of their system administrative operations while organizations focus more on t...

May. 21, 2013 04:08 AM EDT

read more & respond »

Latest .NET News

Cloud Computing for the Health of It

By Patrick Burke

Cloud computing must have been brushing up on...

May. 24, 2013

Cloud Expo & Big Data Expo 2012 West

KEYNOTES

OpenStack

Opening Keynote | Mission-Critical Applications in the Cloud – Myth or Reality?

Rackspace

Day 2 Keynote | An Open Cloud Discussion

Progress

Day 3 Keynote | Cloud Applications: Some Assembly Required

Akamai

Day 3 Lunch Keynote | The Extended Enterprise: Taking Your App Delivery Strategy to the Cloud

Cisco

Day 4 Keynote | The Ever Changing Cloud

PLATINUM PLUS SPONSORS

Nebula | OpenStack

Discussion Panel – Powered by OpenStack

Progress Software

The Impact of Big Data and Cloud on Data Connectivity

Rackspace

The IT Talent Shift: Preparing Your Enterprise IT Talent for the Cloud

PLATINUM SPONSORS

Dell

Is There a Silver Lining to Cloud — Or Just a Lot of Hot Air?

Intel

Enterprise without Limits: A Blueprint for Organizational Agility

New Relic

Managing the Explosive Growth and Consolidation of Big Data in the Cloud

Red Hat

Managing the Explosive Growth and Consolidation of Big Data in the Cloud

Terremark

Perception vs Reality in the Cloud

GOLD SPONSORS

Akamai

Challenges and Opportunities for a Cloud-based Application Delivery Strategy

Broadcom

Sustainable Networking Innovation Through Collective Intelligence: Software Defined Networking

Citrix

Lessons Learned from 100 IaaS Cloud Deployments...and Counting

Driving Innovation Through the Cloud

SOA Software

Best Practices of API Management

SoftLayer

Building a "Mainstream" Private Cloud: What You Need to Know

VMware

From Infrastructure to Applications - the Next Step in Your Cloud Journey

Big Data Power Panel at Cloud Expo Silicon Valley: Cloud and Big Data – What's Working, What's New?

CEO Power Panel at Cloud Expo Silicon Valley

CTO Power Panel at Cloud Expo Silicon Valley: The Cloud Computing State of the Union

Click For 2012 East Event Webcasts

Cloud Expo & Big Data Expo 2012 East

KEYNOTES

SHI

Opening Keynote | Mission-Critical Applications in the Cloud – Myth or Reality?

Rackspace

Day 2 Keynote | The Era of Open Clouds is Upon Us

Oracle

Day 2 Lunch Keynote | A Pragmatic Journey to the Cloud

Citrix

Day 3 Keynote | Step up to a Higher Cloud

Akamai

Day 3 Lunch Keynote | Trends and Challenges in the Hyperconnected World

DIAMOND SPONSOR

SHI

From Chief Information Officer to Chief Innovation Officer

PLATINUM PLUS SPONSORS

Oracle

Oracle's Cloud - An Enterprise Cloud for Business-Critical Applications

Rackspace

Cloud – Vision to Reality

PLATINUM SPONSORS

Citrix

Architecting Your Cloud: Lessons Learned from 100 CloudStack Deployments

Dell

Enterprise without Limits: A Blueprint for Organizational Agility

Intel

Managing the Explosive Growth and Consolidation of Big Data in the Cloud

Pacific Control Systems

Galaxy – the Cloud-Based Platform of Platforms

GOLD SPONSORS

Akamai

Taking Your Application Delivery Strategy to the Cloud

EffectiveUI

Effectively Leveraging the Cloud for Better User Experience

Interexion

The World According to Cloud

NextAxiom Technology

Fuel Your Cloud with Metered, Virtualized Middleware

PerspecSys

Taming the Cloud Data Beast – Information Privacy, Residency and Security in the Cloud

Softlayer

Enterprise Class or Internet Scale? The Right Cloud for the Job

Terremark

Executing Enterprise Clouds

Whiptail

Data at the Speed of Life

POWER PANELS

Big Data Power Panel at Cloud Expo New York: What's Driving Big Data – and Why Now?

Cloud Trends' Power Panel at Cloud Expo New York: Unleashing the Ever-Growing Value of the Cloud

CEO Power Panel at Cloud Expo New York: Cloud Computing and Big Data Strategy

CTO Power Panel at Cloud Expo NY: Cloud Computing: What's Working, What's New, What's Next?

Click For 2011 West
Event Webcasts

Is Your Business 100% Ready for the New Era of Cloud Computing and Big Data? The Only Enterprise IT Event in 2013 Covering the Entire Scope of both Cloud & Big Data

Come to New York and get yourself up to date with the Big Data revolution! As advanced data storage, access and analytics technologies aimed at handling high-volume and/or fast moving data all move center stage, aided by the Cloud Computing boom, Cloud Expo is the single most effective event for you to learn how to use you own enterprise data – processed in the Cloud – most effectively to drive value for your business.

There is little doubt that Big Data solutions will have an increasing role in the Enterprise IT mainstream over time. Get a jump on that rapidly evolving trend at Big Data Expo, which we are introducing in June at Cloud Expo New York.

Cloud Expo was announced on February 24, 2007, the day the term "cloud computing" was coined. That same year, the first Cloud Expo took place in New York City with 450 delegates. Next June, Cloud Expo is returning to New York with more than 10,000 delegates and over 600 sponsors and exhibitors.

"Cloud" has become synonymous with "computing" and "software" in two short years. Cloud Expo is the new PC Expo, Comdex, and InternetWorld of our decade. By 2012, more than 50,000 delegates per year will participate in Cloud Expo worldwide.

The cloud is certainly a compelling alternative to running all applications within a traditional corporate data center. But moving from theory into practice is where things get complicated, and this is where attending a top industry event like Cloud Expo comes in.

No one can take full advantage of cloud computing without first becoming familiar with the latest issues and trends, which is why the organizing principle of the 10th International Cloud Conference & Expo on June 10-13, 2013 - is to ensure - through an intensive four-day schedule of keynotes, general and breakout sessions, and our bustling Expo Floor - that attending delegates leave the Javits Center with abundant resources, ideas and examples they can apply immediately to leveraging the Cloud, helping them to maximize performance, minimize cost and improve the scalability of their Enterprise IT endeavors.

Delegates will leave Cloud Expo with dramatically increased understanding the entire scope of the entire cloud computing spectrum from storage to security.

Whether you're an enterprise or small to medium business, you'll soon be benefiting from the Cloud. Join your peers in New York City June 10-13, and maximize those benefits already in 2013. See you in New York City!

Register Now!
Save $500 on your “Golden Pass”! Call 201.802.3020
or click here to Register
Early Bird Expires Friday.

Speaker Opportunities
Submit your speaking proposal for the upcoming Cloud Expo in New York City
[June 10-13, 2013]

Exhibitor Info
Please Call 201.802.3021
events (at) sys-con.com.
Carmen Gonzalez,
carmen (at) sys-con.com.

Produced and presented by Cloud Expo, Inc.