What kind of access controls to cloud servers are important?

ITworld staff

Is it an all-or-nothing proposition?

Answer this Question


3 total
ITworld staff
Vote Up (35)

One place that the cloud vendors are still playing catch up to the mainframe computing world has to do with security policies and access controls. In many cases, access is an all-or-nothing proposition, meaning that once a user authenticates to the cloud, they have the freedom to do a lot of unintentional damage to start and stop a virtual server or make other mayhem inside the entire cloud environment.


Some cloud providers are better about this than others, and allow virtual networks within a particular environment or other means of segregated access for individual users. There are also third-party security tools, such as Hytrust's Appliance for VMware and Reflex Systems vTrust. Both of these allow more granularity so that users can run the applications on a virtual server but not reconfigure or turn off the server itself.


For more Cloud Computing tips, see 12 questions to ask your cloud computing provider

Vote Up (27)

I would like to see granular security over cloud-based storage that integrates with Active Directory. If I'm managing hundreds of users across multiple departments, it's important to make sure that employees can only get into the files that they're allowed to see, and to allow management to take a birds' eye view over the work their employees are producing.

Vote Up (20)

You may want to read this PDF file on controlling cloud data:



"Cloud computing is clearly one of today’s most enticing
technology areas due, at least in part, to its cost-efficiency and
flexibility. However, despite the surge in activity and interest,
there are significant, persistent concerns about cloud computing
that are impeding momentum and will eventually compromise the
vision of cloud computing as a new IT procurement model. In this
paper, we characterize the problems and their impact on adoption.
In addition, and equally importantly, we describe how the
combination of existing research thrusts has the potential to
alleviate many of the concerns impeding adoption. In particular,
we argue that with continued research advances in trusted
computing and computation-supporting encryption, life in the
cloud can be advantageous from a business intelligence standpoint
over the isolated alternative that is more common today."

Ask a question

Join Now or Sign In to ask a question.
When not busy helping to find new treatments for cancer, IBM Watson is helping to cook up a few new dishes as well.
Thanks to the cloud, the “as a service” trend is getting a little out of control
IBM continues to make the case for the nascent field of cognitive computing, showing off some Watson prototypes Thursday that could help speed scientific discovery in the medical field, by scanning large volumes of literature and data far more quickly then humans can, and suggesting possible leads.
NASA migrated 65 software applications, including its flagship NASA.gov website to the cloud in 22 weeks, and the space agency is still in the midst of a massive deployment to the cloud.
Is it crazy to pay $1300 for a Chromebook? Some reflections after a year and a half of living with Google's luxurious Pixel.
IBM announced late Wednesday that it's making its artificially intelligent computer system, Watson, available to researchers as a cloud service.
Technology companies make up almost half of the businesses ranked highest by their employees for culture and values in a new survey
Microsoft has extended the data loss prevention features in Office 365 so that they are available not only for its email tools but also for data in SharePoint Online and OneDrive for Business.
Salesforce.com's development teams are continuing their steady pace of improvements to the Salesforce1 mobile application, which first debuted at last year's Dreamforce conference.
Responding to the growth of enterprise software development teams, Microsoft will allow occasional contributors to access the Visual Studio Online project development environment at no cost.
Join us: