Skip to main content

Krishnan Subramanian's Library tagged security   View Popular

14 Dec 09

Security for Cloud-based Enterprise Applications | blog.dt.org

  • Security for cloud-based applications is actually a multifaceted problem, with distinct threats and responses for network security, operating system security, data security, and virtualization security
  • I have chosen to use an encrypted TCP port forwarding strategy to extend the customer’s network security envelope into the cloud. Specifically, I use an implementation of the ssh protocol that performs bi-directional TCP traffic forwarding across encrypted, compressed connections between cloud-based virtual instances and customer machines behind their corporate firewalls. The encryption strength is configurable, and is at least as secure as any corporate VPN encryption. This is another way of saying that it does not introduce any new network threats beyond what a customer already faces with their existing VPN technologies
  • 1 more annotations...
26 Oct 09

The Cloud Is Virtualization's Next Frontier

  • As customers consider moving workloads to public clouds, they need to trust that their applications and data are protected in an environment where they will share hardware with unknown third parties. That type of infrastructure is often known as a "trusted multi-tenant environment." As a key step toward that goal, Intel is working on the forthcoming Intel® Trusted Execution Technology for Servers (Intel® TXT for Servers).


    Using Intel TXT for Servers, customers can verify that their hypervisor has not been tampered with. This technology provides an added measure of protection against rootkits and provides a signature that can verify that the expected versions of the hypervisor are in fact loaded onto the server.

06 Oct 09

Web Application Security at the Edge is More Efficient Than In the Application

  • web application security in the cloud is better accomplished at the edge, with a web application firewall or similar solution, than it is inside the cloud in the application. This is true regardless of whether the cloud model is public or private; basically if you’re being charged on a per-usage basis then placement of web application security solutions has an impact on the total cost of running your application.
28 Aug 09

Avoiding the Toll Road to the Cloud

  • The real problem is your existing applications, which are designed under conventional internal network assumptions. They are chatty, too tightly bound and too finely grained. They make the naïve assumption of a relatively secure operating environment and depend on localized security and identity contexts. You cannot simply redistribute these to public clouds and then try to force the long-haul communication to change to accommodate their needs. Instead, the applications need to change.
1 - 20 of 179 Next › Last »
Showing 20 items per page

Selected Tags

Related Tags

Sponsored Links

Ads by Google

Highlighter, Sticky notes, Tagging, Groups and Network: integrated suite dramatically boosting research productivity. Learn more »

Join Diigo