This is the last in a series of posts that provided a deeper view into cloud security and some of the key questions it sparks. In the seventh installment, I invited Roy Feintuch, co-founder and CTO at Dome9 Security to discuss its “security groups” solution in depth. Today, I’ll round up the previous posts in this series.
Over the past several weeks, I’ve highlighted some of the key issues and questions surrounding security in the cloud. We’ve touched on everything from partners and compliance to physical security and lines of responsibility shared between the customer and us, their hosting provider. Here is a summary of the posts that were a part of the cloud security blog series.
The Many Faces Of Cloud Security
Cloud computing inherently introduces a number of questions around security. To many, it’s a new model, and in a shared-tenancy environment certain questions are bound to arise. And as I engage with our customers, it’s clear that cloud security means different things to different people. Essentially, cloud security has many flavors – and they all should be considered when thinking about “security in the cloud.” There are not only concerns around the security of the server and data itself; but network security, account and access controls, compliance and regulations and other questions come into play. Here, I breakdown of some of the levels of security and how Rackspace provides them to our customers.
The Customer’s Role In Cloud Security
I like to think of cloud security as a team sport: Ultimately, both the cloud provider and the customer have to work together to ensure security best practices are followed and met. Given the role of the customer in the configuration and consumption of their cloud environment, it’s imperative for the cloud provider and cloud customer to both put controls in place to manage the risks that multi-tenant environments can present. Both the cloud provider and cloud customer must accept responsibility for different aspects of the system and both must implement a range of controls in order to properly secure the service. When the team collaborates well, we’ve seen many architectures pass audits and assessments.
Cloud Security Gets Physical
Cloud computing is virtual. It happens, well, in the cloud. Because of that it’s often easy to forget that somewhere data and information reside on real physical servers in brick-and-mortar locations that need to be secure. At Rackspace, we ensure that our data centers are highly secure, impenetrable fortresses and have put into place a number of measures to protect our cloud customers’ data and sensitive information. We’ve been incessant on this point since we first opened our doors over 12 years ago and we’ve learned a lot along the way. Here are a few of our standard security measures.
Network Security In The Cloud
In the cloud, traditional network security measures are still applicable – a secure cloud must be supported by a strong network. For added security, we at Rackspace have implemented additional steps to manage the risks posed by web-scale virtualization and to manage the scope of our cloud environments. We can provide you services and guidance to assist with the management of additional risks posed by your operational model.
Compliance Standards And Regulations That Keep The Cloud Secure
To ensure that your data is secure in our data centers and our cloud, Rackspace must adhere to certain compliance standards and regulations. These standards ensure that you can trust us with your data and that our security practices are up to snuff. There are a host of security compliance standards and regulations out there. This is a primer on some of the ones to which Rackspace adheres.
Cloud Security: Don’t Go It Alone
Cloud security isn’t a sprint – it’s a marathon. It can also be thought of as a relay: strong cloud security comprises products and services from various players. At Rackspace, we offer numerous cloud security options, but we also rely on partners to further fortify your cloud environments. Through our Cloud Tools Marketplace, we offer you access to some best-in-class tools to tighten cloud security. Here, I offer a glimpse at some of them.
Cloud Security: Create Security Groups For Your Rackspace Servers
This is a guest post written and contributed by Roy Feintuch, Co-founder and CTO at Dome9 Security, a Rackspace Cloud Tools partner. Dome9 Security automates server firewall management to provide secure, on-demand access and make your Rackspace servers virtually invisible to hackers.