who is responsible for security of the cloud

Who Is Responsible for Security of the Cloud?

SWG, ZTNA / By

Cloud data services are everywhere and are vital. But who is responsible for security of the cloud?

Who Is Responsible for Security of the Cloud?

A cloud-based solution is different from a system that runs on an individual computer in that it does not have to be installed on the user’s computer. Instead, any user of the system can access it from any device with a connection to the internet. Every employee is responsible for cloud security.

This makes it much easier for everyone to share data and programs from one central location. And Network Security information protection is very important.

Cloud Data Protection Factors and Alliance

Cloud Storage Security is based on some factors. Data encryption is implemented in the storage service by using HTTPS protocol with 256-bit AES encryption. The customer can choose between two encryption schemes.

Blob-level encryption is performed by using HMAC and AES 256-bit encryption. Storage service provides the customer with the ability to set the key. The key is used to encrypt the data. Container-level encryption is performed by using AES 256-bit encryption.

Cloud Storage Security Alliance is a non-profit industry organization. The members are the companies that provide secure cloud storage solutions. Its mission is to help organizations assess, secure, and monitor their use of cloud storage services.

The CSA provides a set of best practices, suggested controls, and a self-assessment tool. This is to help IT professionals assess the security of their cloud storage environment. The CSA offers two levels of membership.

First is the membership for organizations that offer cloud storage services. The second one is a membership for those organizations that use cloud storage services.

Cloud Storage Security Alliance Members:

1. Amazon Web Services

2. Box

3. Cloudian

4. eCourier

5. Hightail

6. IBM

7. Microsoft

8. Nimbus Data Systems LLC. 

9. Oracle Corporation

10. Pegasus Solutions, Inc.

11. Seagate Technology Plc 

12. Syncplicity 

13. The US Department of Defense 

14. Verizon Enterprise Solutions 

15. Western Digital

Cloud Security Standards

Storage service provides end-to-end protection of data in transit, at rest, and in use. This includes authentication and authorization controls, monitoring, logging, and auditing of access attempts. Also, post-incident forensic analysis of security breaches. 

As a result, Azure Storage offers a very robust security infrastructure for storing data accessed. That is through web clients or applications hosted in Azure Cloud Service. Also, it is called Azure Virtual Machines.

With Blob Service, customers have access to an industry-recognized standard set of security features. This includes strong access control, role-based access control (RBAC), snd identity federation support for enterprise customers. Also, fine-grained auditing, and multi-factor authentication (MFA) support for different accounts and services.

Cloud Security Standards are not yet mandatory for cloud storage services. It is possible to store data in security-free cloud services. It is not possible to store data in a secure cloud storage service without standards.

The Cloud Security Alliance has a set of security standards to protect the data of a user in the cloud. There are many free tools available that help protect your cloud data. Microsoft Azure Security Center allows you to monitor and manage your Azure resources.

This provides a single pane of glass to view and manage security across your subscriptions. 

Click to rate this post!
[Total: 0 Average: 0]

Scroll to Top