Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
In a new report, Alert Logic notes that Web application attacks affected close to half of the cloud hosting environments analyzed for the study.
In an effort to increase security for user accounts, Apple on Thursday introduced a two-step verification option for Apple IDs.
A new study from the Ponemon Institute and CA Technologies indicates some organizations may be setting themselves up for failure when it comes to cloud security.
Skyhigh Networks, a Cupertino, California-based startup offering cloud visibility and control solutions, on Monday emerged from stealth mode and officially launched its new solution designed to help enterprises know which cloud services their employees use.
Barracuda Networks has teamed up with Microsoft to bring additional levels of protection to web applications and data hosted in Microsoft’s Windows Azure cloud.
Despite the fact that a majority of IT respondents say that their cloud deployments were successful, and have saved their respective organization money, many still do not trust the cloud with sensitive or personal information.
According to a recent survey conducted by Varonis, 48% of respondents said they have experienced or suspect unauthorized access to files on virtualized servers.
CipherCloud, a cloud information protection provider, this week announced that it has raised $30 million in funding from Andreessen Horowitz.
HighCloud Version 2.0 enables enterprises and cloud service providers to protect data in private, hybrid and public cloud environments by securing selected virtual disks and other files within the VM using NIST-approved AES 128 and 256-bit encryption.
According to a report form Forrester, despite their security concerns – and perhaps because most IT managers simply have no other option – as many as one-third of enterprises are placing sensitive data into the cloud.
- 1 of 16
- ››
FEATURES, INSIGHTS // Cloud Security
As we define what may arguably be the “next big thing” for networking, did we leave network security as an afterthought? What are the new considerations for security in a software-defined network?
What happens when a lack of control over the technologies on which trust is built means you can no longer trust them? Take a look, for example, at our reliance on cryptographic keys and digital certificates—technologies that were once thought of as intrinsically trustworthy.
Cloud bursting's ability to temporarily move or expand a workload that normally runs on a private cloud out to a public cloud is an easy thing to do, but when we start looking at the variety of hypervisors and management tools being used, things get murky.
When it comes to setting the standards for crucial internet functionality such as authentication, the Internet community must remain vigilant and carefully examine and scrutinize change proposals, to ensure they support the greater good of all of the Internet users.
Overall, declaring “no public cloud, period” recalls echoes of “no virtualization, ever” or “paper only and always – computers are just for arithmetic”.
The practices and technologies that public cloud providers are using, building, adopting, and ultimately perfecting, are going to strongly influence how private data centers are run.
You know you need encryption, so then the question becomes how to start. What needs to be encrypted? The answer is anything of value.
How can applications and infrastructure be trusted and controlled when organizations have seemingly given up both to their cloud providers?
There are various characteristics of the AWS model that we can extend to security -- the ability to leverage economies of scale for security analysis, or to work more closely with application developers to embrace their speed of innovation.
Modern data centers are in the midst of an ongoing period of very dynamic evolution that has fundamentally changed the speed and efficiency of enterprise computing. For this reason alone, it is critically important that we design modern security controls into our virtualized data centers.
- 1 of 7
- ››
Subscribe to SecurityWeek
- Yahoo Japan Suspects 22 Million IDs Stolen
- US Authorities Seize Bitcoin Operator Accounts
- Saudi Reports Attacks on Government Websites
- Italian Police Raid Hackers Who Took on Vatican
- Britain's Financial Times 'Hacked by Syrians'
- The High Financial Costs of Failed Trust
- ESET Uncovers Cyber Espionage Campaign Targeting Government Agencies in Pakistan
- Malicious YouTube Pages Targeting Chrome Users
- Four Lulzsec Hackers Sentenced to Jail in Britain
- Online Crime Leaves $525 Million Price Tag for Consumers
Copyright © 2013 Wired Business Media. All Rights Reserved. Privacy Policy | Terms of Use