According to Identifytheft.org, in 2014, there were 783 data breaches resulting in the loss of more than 85 million records – a bad year for secure data by any measurement. This year, unfortunately, is already worse with 80 breaches reported and 85 million records lost.
At the same time datacenter security seems to be lacking, the momentum behind cloud computing could not be much stronger. Cloud computing, with a heavy reliance on virtualization technology, provides a number of compelling business benefits to companies, large and small. Computing resources are used more efficiently, scaling to meet seasonal demands, integrating new products more rapidly, and standardizing data center infrastructure. Industry consulting firm IHS estimates that more than $230 billion will be spent on cloud infrastructure by 2018. A CIO survey done by IBM indicates that 64 percent of respondents see cloud computing as critical to the business.
The growing risk to company data and the explosive momentum behind cloud computing introduce several cloud security considerations that need to be taken into account.
Next-generation security for the cloud
To help organizations protect their business critical applications and data, a new approach is needed: a platform approach that applies next-generation security to the application, not the port, while simultaneously inspecting the traffic for known and unknown threats and enabling access based on user credentials. This next-generation approach not only protects the network, it also continually learns from the threats that are prevented and uses that data to improve other cyber threat capabilities.
The question of whether application control is applicable in the datacenter arises because of the limited number of known applications that are typically in use. The theory is that we know which applications are in use, therefore we can more easily secure them. But the reality is that recent high profile breaches have shown that attackers will use applications commonly found on your network (including your datacenters) to implement their attacks and extract your data.
Some examples:
Our security platform allows you to implement security policies based on Zero Trust principles that would help you improve your security posture in each of the examples above. The concept of Zero Trust extends the practice of network segmentation to the level of granting access based on specific applications, allowing user access based on their credentials and controlling what content can be sent at each segmentation point. This all happens on a “never trust, always verify” basis. Native management features in our platform will allow you to streamline firewall provisioning and automate policy updates so that they can keep pace with the workload changes.
To learn more about how you can apply next-generation security to your private, public or hybrid cloud, check out these resources:
Thanks for reading.
By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.