Support: 1-800-961-4454
1-800-961-2888
More data and higher stakes are adding to the pressure to maintain bulletproof application security. With the hyper-connected nature of enterprise environments, single outages can wreak widespread havoc extending far beyond the IT department. End-user productivity takes a hit three times harder than IT productivity during an outage. Non-IT/security departments absorb more than half of DDoS attack-related costs with customer support bearing 63 percent of the burden.
By Stephen Coty, Chief Security Evangelist, Alert Logic
Recent activity with the Heartbleed vulnerability has the industry reeling and re-evaluating their security controls. We recently posted about the Rackspace response to this event, but while security is top-of-mind we’d like to share a new white paper on the topic of “Cloud Security in an Agile World.”
This is a guest post written and contributed by John Graham-Cumming, a programmer with CloudFlare, a Rackspace Cloud Tools partner that offers cloud-based services to secure and accelerate websites.
Earlier this year Racker Anne Gentle blogged about her contributions to the OpenStack Operations Guide, an instructional book highlighting how to operate the cloud on a daily basis. Fueled by caffeine and take-out food, Anne and a dream team of cloud evangelists and developers outlined, wrote and edited the 230-page book in just five days at the Rackspace Austin office.
In this edition of the Google+ Office Hours Hangout, we talked about some of first steps to achieve security in the cloud. While security is a topic that deserves weeks of discussion, we wanted to give a quick overview on some of the basic practices. If you have any other questions about securing your solutions in the cloud, check out Wayne Walls’s security post as part of his Pillars of Cloudiness and feel free to give us a call at Rackspace and ask for a Launch Manager. Here are some of the highlights from last week’s Hangout – and you can scroll to the bottom to watch the Hangout in its entirety.
Congratulations to our Cloud Tools Marketplace partner CloudPassage for achieving certification as a Level 1 Payment Card Industry-Data Security Standard (PCI-DSS) service provider!
Security continues to be a concern for customers as they consider moving to the cloud. However, some aspects of a secure infrastructure are common in many customer deployments.
There are many options when trying to assess the security posture of your application and its hosting environment. Some choose to start from the top of the stack down and look at the application directly, while others might look at the supporting infrastructure first, including the network itself, the firewall rules, running services, and web server configurations. Regardless of the approach, enterprises must protect the integrity of their application and data by proactively identifying potential attack vectors or vulnerabilities. Certain regulation and standards even require periodic vulnerability assessments.
There are five essential pillars of cloudiness. In this recurring blog series, we’ll count down from No. 5 to No. 1. In this first post, we discuss security.
Racker Powered
©2014 Rackspace, US Inc.