What kind of access controls to cloud servers are important?

ITworld staff

Is it an all-or-nothing proposition?

Answer this Question

Answers

3 total
ITworld staff
Vote Up (33)

One place that the cloud vendors are still playing catch up to the mainframe computing world has to do with security policies and access controls. In many cases, access is an all-or-nothing proposition, meaning that once a user authenticates to the cloud, they have the freedom to do a lot of unintentional damage to start and stop a virtual server or make other mayhem inside the entire cloud environment.

 

Some cloud providers are better about this than others, and allow virtual networks within a particular environment or other means of segregated access for individual users. There are also third-party security tools, such as Hytrust's Appliance for VMware and Reflex Systems vTrust. Both of these allow more granularity so that users can run the applications on a virtual server but not reconfigure or turn off the server itself.

 

For more Cloud Computing tips, see 12 questions to ask your cloud computing provider

ncharles
Vote Up (24)

I would like to see granular security over cloud-based storage that integrates with Active Directory. If I'm managing hundreds of users across multiple departments, it's important to make sure that employees can only get into the files that they're allowed to see, and to allow management to take a birds' eye view over the work their employees are producing.

jimlynch
Vote Up (19)

You may want to read this PDF file on controlling cloud data:

http://www.eecs.berkeley.edu/~elaines/docs/ccsw.pdf

Snippet:

"Cloud computing is clearly one of today’s most enticing
technology areas due, at least in part, to its cost-efficiency and
flexibility. However, despite the surge in activity and interest,
there are significant, persistent concerns about cloud computing
that are impeding momentum and will eventually compromise the
vision of cloud computing as a new IT procurement model. In this
paper, we characterize the problems and their impact on adoption.
In addition, and equally importantly, we describe how the
combination of existing research thrusts has the potential to
alleviate many of the concerns impeding adoption. In particular,
we argue that with continued research advances in trusted
computing and computation-supporting encryption, life in the
cloud can be advantageous from a business intelligence standpoint
over the isolated alternative that is more common today."

Ask a question

Join Now or Sign In to ask a question.
Building on its successful platform for monitoring the performance of IT systems, New Relic now offers a service that collects and analyzes app performance data to provide more information about how effectively businesses are serving their customers.
Will we see anything sillier than a Kickstarter campaign to make potato salad? Wait, don’t answer that
Amazon challenges Box with file share services, attempts to woo mobile app developers.
IBM, Microsoft, Red Hat and other IT vendors are lending a hand to Google to help build software that enterprises could use to manage their computerized workloads in the cloud.
Microsoft's price cuts for some Office 365 plans was an attempt to keep momentum on its software-by-subscription push, an analyst said.
Oracle's massive annual OpenWorld conference isn't happening until late September, but the vendor recently unveiled details of nearly 1,800 sessions planned for the event that on balance paint a comprehensive picture of what its customers, partners and competitors can expect.
Microsoft is coming out with new hardware and cloud management features for its StorSimple hybrid storage offering that promises lower costs and better data protection.
Enterprises looking to cut costs of storing data can soon investigate a new service from Microsoft designed to save money by backing up information in the cloud.
Microsoft is continuing its dogfight with Salesforce.com in the customer relationship management software market with a new Dynamics CRM Online cloud service for U.S. government agencies.
Microsoft will revamp its Office 365 lineup for small and midsize businesses (SMBs), adding features, dropping prices and increasing the flexibility to mix and match them with Office 365 plans for enterprises and with stand-alone applications.
Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

randomness