Beruflich Dokumente
Kultur Dokumente
Security Overview
Glenn Brunette
Distinguished Engineer
Sun Microsystems, Inc.
Copyright © 2009 Sun Microsystems, Inc.
What Do People See in the Clouds?
Gartner:
SC Magazine: 7 cloud-computing
Head in the clouds: Cloud security risks
computing security issues
CONTEXT
Copyright © 2009 Sun Microsystems, Inc.
Which is “Best”?
Faster time-to-market
ce
al
tic
C
eb
dic
an
aly
HP
Me
Fi n
An Reduction of custom
Private
software
Software as a Service
Hybrid
Cloud Computing Layers
Public
Platform as a Service
use
Grow infrastructure
Infrastructure as a Service
el
od
M
with business
s
es
in
us
B
ud
lo
C
Reference: “Working Definition of Cloud Computing”. National Institute of Standards and Technology
http://csrc.nist.gov/groups/SNS/cloud-computing/index.html
VS
Physical Location
Customer Isolation
Unauthorized Access
Disclosure, Alteration,
and Destruction
Encryption and Key Mgmt
Copies and Remanence
Copyright © 2009 Sun Microsystems, Inc.
IaaS Recommendations - Storage
Physical Location
Customer Isolation
Unauthorized Access
Disclosure, Alteration,
and Destruction
Encryption and Key Mgmt
Copies and Remanence
Copyright © 2009 Sun Microsystems, Inc.
IaaS Recommendations - Compute
Strong Authentication
Faster time-to-market
Authenticated Communications
Reduction of custom
Encrypted Communications
software
Restricted Pay only for what you
Access
use
Least Privilege, Separation of Duty
Grow infrastructure
Active Monitoringwith
and business
Logging
Copyright © 2009 Sun Microsystems, Inc.
Ongoing Concerns
• Transparency
• Operational Maturity
• Trust and
Key Management
• “Rogue” Environments
Copyright © 2009 Sun Microsystems, Inc.
Emerging Concerns
• Security at Scale
• Ephemeral Deployments
• Forensic Pathology
• Economic Attacks
Copyright © 2009 Sun Microsystems, Inc.
Managing Risk
NEED A NEW IMAGE
INCLUDING: POLICY/LEGAL,
PEOPLE, PROCESS, and
TECHNOLOGY
INTERTWINED
Take
Takea aSystemic Approach
Systemic Approach
Copyright © 2009 Sun Microsystems, Inc.
IT Security Must Evolve
sun.com/cloud
Copyright © 2009 Sun Microsystems, Inc.
Q&A
Copyright © 2009 Sun Microsystems, Inc.
THANK YOU!
sun.com/cloud
29