Exploring the five major Information Security bottlenecks of cloud computing

Source: Internet
Author: User
Tags aws console

tag: Use the OS file data issue code Div To Work

With the development of enterprise Cloud technology, cloud computing has become an investment for most enterprise employees. What is cloud computing? There are multiple definitions of cloud computing. There are at least 100 explanations for what cloud computing is. Currently, the National Institute of Standards and Technology (NIST) defines that cloud computing is a pay-as-you-go model, this mode provides available, convenient, and on-demand network access and enters the configurable computing resource sharing pool (resources include networks, servers, storage, application software, and services ), these resources can be quickly provided, with only a small amount of management work required or little interaction with service providers. Although cloud computing has obvious advantages, there are also many problems in cloud computing, especially those that involve sensitive information security protection, which have been criticized by many people ". What are the unstable factors and bottlenecks of cloud computing? Let Shan liwangan, an expert in the information security field, tell you. Five major cloud computing bottlenecks: cloud attack events-code spaces events not long ago, in the case of code spaces, a source code hosting operator, attackers intrude into the overall architecture of code spaces based on Amazon Web Service (AWS) using combined tools. The threat starts when an attacker attempts to blackmail code spaces and uses it as a condition for stopping multi-carrier DDoS attacks. Finally, attackers controlled the code spaces AWS console and deleted almost all data stored in the cloud. The resulting cost for data loss and SLA remediation will make code spaces unable to operate any more. Although such an event is not very common, it reflects an important problem from the aspect: When an enterprise plans to migrate data to the cloud, further efforts should be made to deploy a rigorous plan to cope with flood DDoS (Distributed Denial of Service) attacks and increasing threats. However, most companies do not believe they will become DDoS attackers. Therefore, when formulating the IT budget, we always put appropriate defense measures at the end of the plan. However, the cruel reality shows that most companies do not have detection tools, and their assets are infiltrated by others, so they tend to be unconscious. Second, how to protect cloud computing? Currently, important data of enterprises is stored in different storage devices provided by different providers and partners. Therefore, enterprises must monitor and protect new "security boundaries, how to carefully balance and protect data based on cloud computing is one of the security concerns of the entire enterprise. While taking the initiative to take appropriate defense measures, the customer should also evaluate the cloud provider's anti-DDoS capability, it should also be pointed out that the problems encountered when applying the DDos Mitigation policy in cloud-based solutions. These problems are also the main bottlenecks that constrain the development of cloud computing ". First, enterprises only need to focus on protecting the egress of the data center to protect the new enterprise boundary. The adoption of Cloud technology means that enterprise data and applications are distributed to multiple data centers, which creates new security boundaries for enterprises. Enterprises need to implement protection in more places. So how should enterprises defend against attacks in all places where enterprise data is stored? 2. Maintenance remote access is defined as a remote access technology. If an enterprise's cloud service provider suffers a severe DDoS attack and its network access to the service is forbidden, it is equivalent that the enterprise application is "down. What measures should an enterprise's cloud service provider take to prevent this situation from occurring in the Enterprise? Third: how to implement internal and external isolation to protect attackers from buying cloud services like normal users. So how can we protect enterprise data from threats in the cloud environment? Fourth: How does Cloud protection talk about the latest-level high-traffic attacks against large banks or well-known websites in weekly headlines. However, only about 25% of DDoS attacks are large-volume attacks. How can cloud service providers help enterprises cope with these large-volume attacks? Fifth, how can security protocols change with the "Cloud" to establish a price conducive to competition in the cloud computing market? Most providers will choose to create a general protection configuration file available to most users, to reduce the cost of the solution. So how can cloud service providers adopting universal security protocols meet specific security requirements? How to protect data security from bottlenecks, although the above five are the main obstacles to the development of cloud computing, however, there is one obstacle that is "normal" in the development of all modern information technologies-that is, data security protection. While improving data computing efficiency, cloud computing also greatly increases the risk of data leakage. How to ensure the security of data in cloud interaction and storage has become a "bottleneck" in the Development of cloud computing ". However, although the problem is serious, the protection method is "already available". For the various data protection problems arising from the development of modern information technology, data Encryption technology is the best choice. Data Encryption directly acts on the data itself, so that data can be encrypted under various circumstances. Furthermore, due to the special nature of encryption protection, even if data is leaked, encryption protection still exists. As long as the algorithm is not deciphered, data and information can still be called secure. Thanks to these two guarantees, encryption software has become the most important and reliable means for modern enterprises to protect information security. At the same time, due to the diversified requirements of Information Security Protection in the future, multi-mode encryption technology, which is at the forefront of the times, is the best choice in encryption software or encryption technology. Multi-Mode encryption technology combines symmetric and asymmetric algorithms to ensure the quality of data source protection, while its Multi-Mode features allow users to choose their own encryption mode, this allows for more flexible response to various encryption needs and security environments. As a typical representative of this technology, the multi-mode encryption module of shanli waterproof wall also uses transparent encryption technology based on the system kernel, this further ensures the convenience and integrity of information security protection (encryption is not related to the format ). All in all, there are indeed many cloud computing security problems, so people are still worried about cloud computing security. However, the reality is not always so cruel. It turns out that, after using cloud computing, a large number of data migration work orders have been leaked and stolen. In fact, most incidents involving theft of enterprise data from cloud providers are caused by enterprise errors, rather than cloud service providers. However, we cannot "take it lightly" for problems that may occur even if they are "minority ", the most secure approach is to actively adopt flexible and targeted encryption software for data source protection.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.