How to keep applications secure in a private cloud

Security is a key area of application performance and delivery

Many organisations are considering the best methods for building and managing their private cloud deployments, with private cloud adoption rising from 63% to 77% over the last year.

As private clouds increasingly host mission-critical production applications, security increasingly comes into focus as a key part of application performance and delivery.

Advertisement - Article continues below

Network and application security concerns in a private cloud are largely the same as those faced by enterprises in traditional data centres and in the public cloud. Organisations confront web application threats, issues of identity and access management, mitigation of distributed denial-of-service (DDoS) attacks and SSL and encryption concerns in their efforts to secure their applications and ensure that private data remains private.

Web application firewall

When considering implementing a private cloud architecture, organisations must deploy advanced network firewall services, including a solution that can control traffic using basic criteria such as IP address, port and protocol, as well as advanced principles such as HTTP protocol validation, geographical location or endpoint reputation. In addition, a robust WAF can provide comprehensive tools to identify web application threats, block malicious traffic and offer outbound data loss prevention services.

Identity & access management

Managing identity and access in a cloud computing environment with an increasingly distributed mobile workforce becomes more complex every day. Enterprises require a solution that provides advanced authentication services, such as two-factor tokens, CAPTCHA, or geographical restrictions as well as client certificate checking and endpoint inspection. In addition, many organisations consider deploying SAML identity provider services to provide an architecturally sound single sign-on (SSO) solution throughout the enterprise.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

DoS & DDoS

With more and more sites facing multiple denial-of-service (DoS) attacks each year, DoS mitigation services are a necessity for most enterprises running private clouds. A strong solution provides proactive bot defence as well as application-layer DoS detection and mitigation.

SSL

Finally, in the contemporary business world, Secure Sockets Layer (SSL) is everywhere. Analysts predict that encrypted traffic will jump to nearly 64% of all North American online traffic in 2016, up from just 29% in 2015. Enterprises must ensure security with a strong SSL solution that provides decryption, traffic inspection and re-encryption, as well as optimise performance by offloading of computationally intensive SSL workloads from compute node resources.

Featured Resources

Top 5 challenges of migrating applications to the cloud

Explore how VMware Cloud on AWS helps to address common cloud migration challenges

Download now

3 reasons why now is the time to rethink your network

Changing requirements call for new solutions

Download now

All-flash buyer’s guide

Tips for evaluating Solid-State Arrays

Download now

Enabling enterprise machine and deep learning with intelligent storage

The power of AI can only be realised through efficient and performant delivery of data

Download now
Advertisement

Recommended

Visit/security/355013/10-quick-tips-to-identifying-phishing-emails
Security

10 quick tips to identifying phishing emails

16 Mar 2020
Visit/business-strategy/mergers-and-acquisitions/354941/panda-security-to-be-acquired-by-watchguard
mergers and acquisitions

Panda Security to be acquired by WatchGuard

9 Mar 2020
Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/infrastructure/server-storage/355118/hpe-warns-of-critical-bug-that-destroys-ssds-after-40000-hours
Server & storage

HPE warns of 'critical' bug that destroys SSDs after 40,000 hours

26 Mar 2020
Visit/software/355113/companies-offering-free-software-to-fight-covid-19
Software

These are the companies offering free software during the coronavirus crisis

25 Mar 2020
Visit/software/video-conferencing/355138/zoom-beaming-ios-user-data-to-facebook-for-targeted-ads
video conferencing

Zoom beams iOS user data to Facebook for targeted ads

27 Mar 2020
Visit/cloud/355098/ibm-dedicates-supercomputing-power-to-coronavirus-researchers
high-performance computing (HPC)

IBM dedicates supercomputing power to coronavirus research

24 Mar 2020