Welcome!

@CloudExpo Authors: Zakia Bouachraoui, Elizabeth White, Liz McMillan, William Schmarzo, Pat Romanski

Related Topics: @CloudExpo, Microservices Expo, Containers Expo Blog, Cognitive Computing , Agile Computing, Cloud Security

@CloudExpo: Blog Feed Post

Cloud Security – Implementing a Secure Cloud Backup Case Study

Cloud Security and Cloud Encryption options considered

Secure cloud backup is a scenario which increasingly gains traction. It allows organizations to implement an off-site backup while maintaining costs at a minimum. In this blog post I would like to focus on a specific use case of secure cloud backup. The system we describe is comprised of an on-premise replication server, Porticor Cloud Security, and Amazon S3 as the final backup destination, all integrated by one of our fine cloud integrators.

Secure Cloud Backup – The Business Need
In this use case, an enterprise organization was struggling with an inefficient and costly offsite backup infrastructure that was meant to manage an incrementally expanding database.  An offsite server farm was costly to operate and maintain and the tape backup and recovery methods used were time consuming. Furthermore, the company failed to meet regulatory requirements with regard to data availability. To eliminate the complexity and cost associated with this backup methodology, one of our integrators, Emind Systems implemented an onsite dedicated server which mirrored directories and volumes on the local network and replicated data to an Amazon Web Services S3. But a critical requirement was cloud data security and encryption; this is where Porticor comes in.

Cloud Security and Cloud Encryption options considered
One of the top concerns of enterprises deploying cloud encryption is “data confidentiality”, or in other words – who controls the encryption keys, and therefore can potentially access the data. Some cloud providers offer data encryption as part of their service, but as the cloud provider manages and maintains your cloud encryption keys, they can potentially see your data. Rich Mogull described it well on his blog “How to Tell If Your Cloud Provider Can Read Your Data (Hint: They Can)”. One secure alternative would be an on-premise key management server, but that is costly (in operation and capital expenses), and limits the cloud flexibility tremendously.

Secure Cloud Backup – Mission Accomplished
To avoid these issues while maintaining information security, Porticor’s Virtual Private Data has been integrated  (for further reading download the white paper here) in their backup scenario. The end result is a highly scalable, elastic and secure backup solution. The onsite server mirrored the data and transferred it to a pre-configured AWS S3 bucket, and Porticor encrypts each object on its way to S3. Each object has been encrypted using a unique encryption key, yet the customer maintains a single “project” key, which allows for an automated key management cycle while not sharing the encryption keys with anyone.

 

Ariel Dan is co-founder at Porticor Cloud Security

The post Cloud Security – Implementing a Secure Cloud Backup Case Study appeared first on Porticor Cloud Security.

Read the original blog entry...

More Stories By Gilad Parann-Nissany

Gilad Parann-Nissany, Founder and CEO at Porticor is a pioneer of Cloud Computing. He has built SaaS Clouds for medium and small enterprises at SAP (CTO Small Business); contributing to several SAP products and reaching more than 8 million users. Recently he has created a consumer Cloud at G.ho.st - a cloud operating system that delighted hundreds of thousands of users while providing browser-based and mobile access to data, people and a variety of cloud-based applications. He is now CEO of Porticor, a leader in Virtual Privacy and Cloud Security.

CloudEXPO Stories
At CloudEXPO Silicon Valley, June 24-26, 2019, Digital Transformation (DX) is a major focus with expanded DevOpsSUMMIT and FinTechEXPO programs within the DXWorldEXPO agenda. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throughout enterprises of all sizes.
OpsRamp is an enterprise IT operation platform provided by US-based OpsRamp, Inc. It provides SaaS services through support for increasingly complex cloud and hybrid computing environments from system operation to service management. The OpsRamp platform is a SaaS-based, multi-tenant solution that enables enterprise IT organizations and cloud service providers like JBS the flexibility and control they need to manage and monitor today's hybrid, multi-cloud infrastructure, applications, and workloads, including Microsoft Azure. We are excited to partner with JBS and look forward to a long and successful relationship.
Apptio fuels digital business transformation. Technology leaders use Apptio's machine learning to analyze and plan their technology spend so they can invest in products that increase the speed of business and deliver innovation. With Apptio, they translate raw costs, utilization, and billing data into business-centric views that help their organization optimize spending, plan strategically, and drive digital strategy that funds growth of the business. Technology leaders can gather instant recommendations that result in up to 30% saving on cloud services. For more information, please visit www.Apptio.com.
The Master of Science in Artificial Intelligence (MSAI) provides a comprehensive framework of theory and practice in the emerging field of AI. The program delivers the foundational knowledge needed to explore both key contextual areas and complex technical applications of AI systems. Curriculum incorporates elements of data science, robotics, and machine learning-enabling you to pursue a holistic and interdisciplinary course of study while preparing for a position in AI research, operations, software or hardware development, or doctoral degree in a sector poised for explosive growth.
Industry after industry is under siege as companies embrace digital transformation (DX) to disrupt existing business models and disintermediate their competitor’s customer relationships. But what do we mean by “Digital Transformation”? The coupling of granular, real-time data (e.g., smartphones, connected devices, smart appliances, wearables, mobile commerce, video surveillance) with modern technologies (e.g., cloud native apps, big data architectures, hyper-converged technologies, artificial intelligence, blockchain) to enhance products, processes, and business-decision making with customer, product and operational insights.