Cloud Security Week in Review: AWS, OpenVPN, Rackspace & More
Amazon Web Services was a prevalent presence in Cloud Security Week in mid August, as were new industry reports.
For example, we reported this week that OpenVPN Technologies Inc. has launched a new product licensing model available in AWS Marketplace. It gives any size company worldwide access to a virtual private network solution.
Meanwhile, we learned that Thales is now supporting AWS’s key management service, which simplifies users’ ability to create and control encryption keys used to secure their data. The company will provide greater control thanks to bring your own key support with hardware key protection.
“Local control over the generation and storage of keys can help organizations meet the security and compliance requirements needed in order to run their most sensitive workloads in the cloud,” Jon Geater, CTO at Thales e-Security, said.
In other Cloud Security news this week, we learned that Rackspace has made available multi-cloud security to Microsoft Azure. This adds an extra layer of security for customers and reduces the costs of having security expertise in house.
As for the industry reports, there were at least a couple we learned about this week.
One talked about how organizations differ widely on their opinions as to government’s role in data protection. This revelation comes from a new report from Bitglass and the Cloud Security Alliance. The report, based on discussions with 176 information security professionals in the Americas, EMEA, and APAC regions, broached such subjects as to what extent cloud vendors should assist government agencies when asked for their cooperation.
“The decision as to whether or not an organization wants their cloud provider to turn over encrypted data to government when asked is one that all organizations should ask themselves as they make the move to the cloud," John Yeoh, senior research analyst of the Cloud Security Alliance, suggests. "It is also a critical question organizations should be asking of their cloud providers, as part of a comprehensive assessment of cloud providers' security controls.”
Meanwhile, a new report from Varonis Systems Inc. indicates that three out of four organizations have experienced loss or theft of important data in the last two years.