The cloud security debate

September 2011 News & Events

Security is probably the biggest bane in an IT professional’s life, particularly in light of the number of high profile hackings that have taken place over the past few of months. Security breaches seem to be growing in both frequency and stature and this creates concern for any organisation.

Cloud computing and virtualisation are taking global markets by storm, but there are a number of concerns relating to security that are preventing organisations from fully embracing these technologies. “Companies are often nervous about cloud computing and the security of their data in the cloud, particularly in light of stringent corporate governance rules,” says Lizelle Christison, exhibition manager of IP EXPO at Montgomery Africa. “One of the major concerns is the lack of clarity around who is ultimately responsible for the security of their data once it has been moved into a cloud environment. Other concerns include confusion around the legalities of where the data is hosted and a general sense of loss of control over a company’s information, effectively the life-blood of their organisation.”

Lizelle Christison
Lizelle Christison

Cloud computing services are generally delivered in three different models, namely Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS) or Infrastructure-as-a-Service (IaaS). “The first two models typically place responsibility of data security on the shoulders of the service provider as they own most of the IT and security stack.”

Infrastructure-as-a-Service on the other hand lends itself more toward shared responsibility. “Here the service provider will provide some level of baseline security such as firewalls and load balancing, but the responsibility of securing the individual organisation’s data generally falls with the enterprise.”

This adds a new level of complexity to the negotiation of terms and agreements between organisations and their cloud service providers. “It is critical that terms and conditions of CSP agreements are carefully negotiated and checked to ensure that responsibilities in terms of security are adequately understood and met,” says Christison. Enterprises should also investigate additional security measures for their data in the cloud.

Security is one of the key issues that will be discussed at this year’s IP EXPO, taking place on 15 and 16 November at Sandton Convention Centre. “Security is one of the underlying themes that runs across the three seminar streams – IP Networks, Virtualisation and Cloud Computing – and will therefore come under scrutiny from a number of angles,” Christison concludes.

Hi-Tech Security Solutions is hosting a Security Debate on Day 2 of the IP EXPO, where a number of these issues will be debated among leaders in the security industry.

For more information, visit www.ipexpo.co.za





Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Pentagon appointed as Milestone distributor
Elvey Security Technologies News & Events Surveillance
Milestone Systems appointed Pentagon Distribution (an Elvey Group company within the Hudaco Group of Companies) as a distributor. XProtect’s open architecture means no lock-in and the ability to customise the connected video solution that will accomplish the job.

Read more...
Local manufacturing is still on the rise
Hissco Editor's Choice News & Events Security Services & Risk Management
HISSCO International, Africa's largest manufacturer of security X-ray products, has recently secured a multi-continental contract to supply over 55 baggage X-ray screening systems in 10 countries.

Read more...
SAIDSA achieves ISO 9001 certification
SAIDSA(SA Intruder Detection Services Association) Associations News & Events Training & Education
The South African Intruder Detection Services Association (SAIDSA) has announced that it has achieved ISO 9001:2015 certification. This milestone reflects its commitment to quality management and excellence in the security services industry.

Read more...
Detecting humans within vehicles without opening the doors
Flow Systems News & Events Security Services & Risk Management
Flow Systems has introduced its new product, which detects humans trying to hide within a vehicle, truck, or container. Vehicles will be searched once they have stopped before one of Flow Systems' access control boom barriers.

Read more...
Fluss launches the next wave of IoT solutions
IoT & Automation Access Control & Identity Management News & Events
Fluss has announced its newest IoT product; Fluss+ continues to allow users to manage access from anywhere globally and brings with it all the advantages of Wi-Fi connectivity.

Read more...
A standards-based, app approach to risk assessments
Security Services & Risk Management News & Events
[Sponsored] Risk-IO is web-based and designed to consolidate and guide risk managers through the whole risk process. In this article, SMART Security Solutions asks Zulu Consulting to tell us more about Risk-IO and how it came to be.

Read more...
SMART speakers: Uncovering the hidden S in ESG
SMART Security Solutions News & Events
Chris Galvin from the International Code of Conduct Association speaks about the role of responsible security in sustainable business practice.

Read more...
SMART speakers: Bomb threat management protocols
SMART Security Solutions News & Events
Jimmy Roodt, an explosives expert from Gauntlet Security Solutions, will speak on bomb threat protocols, the lack thereof, and why your fire emergency protocols are not an acceptable substitute.

Read more...
AP Sensing
News & Events
AP Sensing is a leading German provider of distributed fibre optic sensing solutions for monitoring critical infrastructure.

Read more...
Gemini Automation Systems
News & Events
Step into the future of home security and convenience with Gemini Automation Systems at Securex 2024, where it will unveil its latest innovations.

Read more...