ITPRO

Printed from www.itpro.co.uk

Register to receive our regular email newsletter at http://www.itpro.co.uk/reg/register.

The newsletter contains links to our latest IT news, product reviews, features and how-to guides, plus special offers and competitions.

Skip to navigation

    IT security must change for the cloud

IT security needs to change to better fit the incoming cloud technologies, according to a senior analyst.

By Jennifer Scott, 10 Feb 2010 at 15:45

Cloud security
Cloud security gallery

Security for IT has always been based on keeping people out of the data centre.

However, with cloud computing becoming more prominent, this pattern needs to change.

So claims Rik Ferguson, senior security advisor for Trend Micro, who told a Westminster eForum held in London this morning that the technology security industry had to adjust.

“The security model traditionally has been one of outside in, [with] a strong perimeter and different layers behind that, always focusing on the intruder coming in," he said.

“With cloud we have to change the way we think. It is inside out security about security systems, access rights, data and the whole chain as at that point the data can exist anywhere."

Trevor Dearing, head of enterprise marketing for Juniper Networks, agreed that the model needed to change, comparing the current one to a castle and the future to a hotel.

“The model is changing. Before we had a castle and built a moat around the data centre... but in the world of virtualisation everything moves around," he added.

“Security policy was traditionally built around the idea of being behind a firewall. The challenge with cloud is it can change from minute to minute, second to second... and the model is something more like a hotel where security acts as a service.”

Security experts have the attitude that if you are not sure something is secure then just don't do it, which just cannot continue with cloud computing, according to John Colley, managing director of ISC2 in Europe.

“The business case for cloud computing is very compelling and it will happen with or without information security's blessing,” he said.

“The role for them to do is work out how to do it securely [and] look at how things can be done instead of why things cant be done.”

Ferguson controversially concluded the debate saying: “The reason I think cloud is absolutely a viable model [is that] it has already been adopted by criminals and they are the leading edge adopters.”

“They see the power, scalability, availability and in their case for them anonymity of this technology and want to use it.”

Email to a friend

Print this page

< Previous   Cloud Security : News Next >

Be the first to comment on this article

You need to Login or Register to comment.

    You may also like...

 Sponsored Links

advertisement

    You may also like...

    Latest Cloud Security Analysis & Insight

Cloud computing

Stop dropping FUD bombs on the cloud

Sometimes it's hard to separate cloud reality from cloud hype, as Davey Winder discovers...

Read more

 

More Cloud Security Analysis & Insight

    Latest Cloud Security Reviews

The Websense Triton Security Gateway Anywhere v10000 appliance

Websense Triton Security Gateway Anywhere review

Rating: 6

Websense's TSGA claims to be the first unified solution for web, mail and data security that doesn’t rely on any third party components. It goes even further by amalgamating on-premises and cloud scanning in the same product, but is it too good to be true? Dave Mitchell finds out in our review.

Read more

 

More Cloud Security Reviews

advertisement

    Most popular

    Register for IT PRO

You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.

Register
Sponsored Links
Advertisement