The mist of cloud security

Since 2008, with the rapid development of cloud computing, cloud security has been put on the agenda. Different vendors have different interpretations of cloud security, and various so-called cloud security schemes are coming, but the question of cloud security has never ceased. The November 2010 IDG survey showed that 67% of users were worried about cloud security when deploying cloud computing solutions. The recent speculation of the "Prism Gate" incident, once again the cloud safely dragged into the public opinion of the Rapids Vortex. What are the challenges and opportunities that cloud computing poses for security? Chinese users today are worried about whether they have to face the looming minefield of worry.

TechTarget June 2012 Survey of Chinese enterprise users shows that 79.6% of companies are doing or considering using cloud computing; more than 22.8% of users are using private clouds, while 50% are considering building private clouds. The survey shows that China's cloud computing is really in full swing and is at a critical stage of development. At the same time, we can see that the private cloud is still the first choice for Chinese enterprise users. There is no doubt that we consider cloud security and start with the private cloud first. On the way to building a private cloud, you don't have to spend a lot of time worrying about the security challenges that the public cloud will encounter every day.

What is the difference between the nature of a private cloud and a traditional datacenter? Especially what are the new pitfalls of private cloud security? In fact, VMware's proposed software-defined data center (SDDC) is the best way to achieve private cloud landing, becoming the default configuration of private cloud tours for corporate users. And SDDC can let us clear cloud security fog, directly see new hidden trouble and old problems. All the security problems our traditional data centers have, the new challenge is the drift of resources, such as: virtual machines can migrate on different physical servers, and this migration will cause the following network connections to move, and the corresponding physical binding security policy will change, This need through the network virtualization and virtual machine coordination to solve together, SDDC Vcns module is the medicine, Vcns let SDDC cloud Security can be customized on demand, with the cloud and move. Of course, through the flexibility brought by SDDC, traditional virus scanning will become a separate module and mode, through more efficient and reliable agentless security to achieve, through a dedicated security virtual machine, sneak into the hypervisor of this dense channel, so that any virus, intrusion, etc. is nowhere to hide. Of course, this is a new opportunity for cloud security provided by cloud computing and can help to make a new leap in the field of information security. Therefore, the security of the private cloud can be step-by-step, the traditional data center security solutions can be satisfied with a slight change, is not a revolution so terrible, at most only a change. The traditional security vendors, together with cloud computing architecture vendors, have built a powerful cloud-computing ecosystem that has a cloud security solution for private clouds that can help users build powerful, reliable, and secure private clouds.

For some internet or small business, the public cloud may be their best choice, the public cloud security challenges are indeed obvious to all. However, a little look back, the public cloud is not flying "demon", is definitely not the devil to destroy the public cloud. The security challenges of the public cloud we have experienced in the traditional Internet. In fact, even if the enterprise business does not use the public cloud, we have to the enterprise's certain business access to the Internet, such as mail, telecommuting and so on. Of course, you may feel that through SSL VPN, RSA and other technologies, has ensured the security of the Internet connection, but the security risks do exist. Why is it safe to use such services today? Because we are familiar with and after a long time experience, we feel that security risks are controllable. In fact, we worry about the security of the public cloud and the security of the Internet is very similar, but we originally feel in love stage, now we have to talk about marriage, fear often indicates that you suffer from "marriage phobia" bale. In fact, the "Prism Gate" incident is only some people used to stall the security of the cloud is only a pretext, because the United States "Prism" program began in 2007, at that time cloud computing has not started the heat, "Prism" program is the data on the Internet monitoring, is definitely not for the cloud. In fact, even if we do not use the public cloud services, is "Prism gate" event will not happen?

Of course, mixed cloud is the ultimate ideal of enterprise data center construction, mixed cloud can be designed safely by a kind of VPN way. Private cloud analogy LAN, public cloud analogy wan, that mixed cloud can analogy to VPN. With the development of technology and progress, you go to the mixed cloud that day, there must have been a good technical support platform for you to wait, alarmist completely unnecessary.

The changes in security with the cloud have also provided new opportunities for homegrown software to showcase their muscles. Sincerely hope that domestic software can fly freely, put aside the shackles of the traditional, embark on a new journey. At the same time, also wish the Chinese users to put aside all kinds of security suspicion, a solid layout, follow the road security hero, walking to the clouds, enjoy the cloud convenient, environmental protection, intelligence, reliable all kinds of cloud services.