Welcome!

@CloudExpo Authors: Elizabeth White, Pat Romanski, Zakia Bouachraoui, Yeshim Deniz, Carmen Gonzalez

Related Topics: @CloudExpo, Microservices Expo, Containers Expo Blog, Cognitive Computing , Agile Computing, Cloud Security

@CloudExpo: Blog Feed Post

Cloud Security – Implementing a Secure Cloud Backup Case Study

Cloud Security and Cloud Encryption options considered

Secure cloud backup is a scenario which increasingly gains traction. It allows organizations to implement an off-site backup while maintaining costs at a minimum. In this blog post I would like to focus on a specific use case of secure cloud backup. The system we describe is comprised of an on-premise replication server, Porticor Cloud Security, and Amazon S3 as the final backup destination, all integrated by one of our fine cloud integrators.

Secure Cloud Backup – The Business Need
In this use case, an enterprise organization was struggling with an inefficient and costly offsite backup infrastructure that was meant to manage an incrementally expanding database.  An offsite server farm was costly to operate and maintain and the tape backup and recovery methods used were time consuming. Furthermore, the company failed to meet regulatory requirements with regard to data availability. To eliminate the complexity and cost associated with this backup methodology, one of our integrators, Emind Systems implemented an onsite dedicated server which mirrored directories and volumes on the local network and replicated data to an Amazon Web Services S3. But a critical requirement was cloud data security and encryption; this is where Porticor comes in.

Cloud Security and Cloud Encryption options considered
One of the top concerns of enterprises deploying cloud encryption is “data confidentiality”, or in other words – who controls the encryption keys, and therefore can potentially access the data. Some cloud providers offer data encryption as part of their service, but as the cloud provider manages and maintains your cloud encryption keys, they can potentially see your data. Rich Mogull described it well on his blog “How to Tell If Your Cloud Provider Can Read Your Data (Hint: They Can)”. One secure alternative would be an on-premise key management server, but that is costly (in operation and capital expenses), and limits the cloud flexibility tremendously.

Secure Cloud Backup – Mission Accomplished
To avoid these issues while maintaining information security, Porticor’s Virtual Private Data has been integrated  (for further reading download the white paper here) in their backup scenario. The end result is a highly scalable, elastic and secure backup solution. The onsite server mirrored the data and transferred it to a pre-configured AWS S3 bucket, and Porticor encrypts each object on its way to S3. Each object has been encrypted using a unique encryption key, yet the customer maintains a single “project” key, which allows for an automated key management cycle while not sharing the encryption keys with anyone.

 

Ariel Dan is co-founder at Porticor Cloud Security

The post Cloud Security – Implementing a Secure Cloud Backup Case Study appeared first on Porticor Cloud Security.

Read the original blog entry...

More Stories By Gilad Parann-Nissany

Gilad Parann-Nissany, Founder and CEO at Porticor is a pioneer of Cloud Computing. He has built SaaS Clouds for medium and small enterprises at SAP (CTO Small Business); contributing to several SAP products and reaching more than 8 million users. Recently he has created a consumer Cloud at G.ho.st - a cloud operating system that delighted hundreds of thousands of users while providing browser-based and mobile access to data, people and a variety of cloud-based applications. He is now CEO of Porticor, a leader in Virtual Privacy and Cloud Security.

CloudEXPO Stories
In his general session at 19th Cloud Expo, Manish Dixit, VP of Product and Engineering at Dice, discussed how Dice leverages data insights and tools to help both tech professionals and recruiters better understand how skills relate to each other and which skills are in high demand using interactive visualizations and salary indicator tools to maximize earning potential. Manish Dixit is VP of Product and Engineering at Dice. As the leader of the Product, Engineering and Data Sciences team at Dice, he takes a metrics-driven approach to management. His experience in building and managing high performance teams was built throughout his experience at Oracle, Sun Microsystems and SocialEkwity.
Enterprises have taken advantage of IoT to achieve important revenue and cost advantages. What is less apparent is how incumbent enterprises operating at scale have, following success with IoT, built analytic, operations management and software development capabilities - ranging from autonomous vehicles to manageable robotics installations. They have embraced these capabilities as if they were Silicon Valley startups. As a result, many firms employ new business models that place enormous importance on software-based innovations. They require not only skilled occupations, such as data analysts and DevOps professionals, with more technical skills, but also middle-level employees with more software and computing acumen. Both large and small firms operate differently.
Digital Transformation (DX) is a major focus with the introduction of DXWorldEXPO within the program. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throughout enterprises of all sizes. We are offering early bird savings on all ticket types where you can save significant amount of money by purchasing your conference tickets today.
Bill Schmarzo, Tech Chair of "Big Data | Analytics" of upcoming CloudEXPO | DXWorldEXPO New York (November 12-13, 2018, New York City) today announced the outline and schedule of the track. "The track has been designed in experience/degree order," said Schmarzo. "So, that folks who attend the entire track can leave the conference with some of the skills necessary to get their work done when they get back to their offices. It actually ties back to some work that I'm doing at the University of San Francisco which creates an "Outcomes-Centric Business Analytics" degree." Bill Schmarzo, author of "Big Data: Understanding How Data Powers Big Business" and "Big Data MBA: Driving Business Strategies with Data Science" is responsible for guiding the technology strategy within Hitachi Vantara for IoT and Analytics. Bill brings a balanced business-technology approach that focuses on business ou...
When talking IoT we often focus on the devices, the sensors, the hardware itself. The new smart appliances, the new smart or self-driving cars (which are amalgamations of many ‘things'). When we are looking at the world of IoT, we should take a step back, look at the big picture. What value are these devices providing. IoT is not about the devices, its about the data consumed and generated. The devices are tools, mechanisms, conduits. This paper discusses the considerations when dealing with the massive amount of information associated with these devices. Ed presented sought out sessions at CloudEXPO Silicon Valley 2017 and CloudEXPO New York 2017. He is a regular contributor to Cloud Computing Journal.