Access your Pro+ Content below.
Cloud migration requires network retooling
This article is part of the April 2011 issue of Information Security magazine
Cloud computing promises many benefits: It can reduce IT costs and downtime while vastly increasing storage, mobility and provisioning options. But, it's also a potential security nightmare: perimeters disappear, clients and servers move around at will, and old models of access control, authentication and auditing no longer apply. All these challenges can be met, but any cloud migration requires careful planning. Cloud computing fundamentally changes long-standing best practices in network design, encryption and data loss prevention, access control, authentication, and auditing and regulatory compliance. To prepare their network for the cloud, organizations need to take stock of their infrastructure and adjust their practices and processes accordingly. START WITH THE PLUMBING A common misperception about cloud computing is that moving services to an off-site provider will reduce bandwidth requirements. In fact, the reverse is often true: Cloud computing can increase bandwidth requirements due to increased Internet connectivity. ...
Access this Pro+ Content for Free!
Features in this issue
Application whitelisting was hyped as an antivirus killer. Its real role is serving as an added weapon in the battle against malware.
Security vendors are adding new capabilities into their products to keep up with the surge in malware.
Security incidents are going to happen. Don't get caught flat footed.
Learn what is required for cloud migration, including retooling of network design and security controls such as encryption and DLP.
Columns in this issue
Giving the president power to shut down the Internet would have devastating consequences.
Grab your newfound visibility by the horns and figure out how to bring oversight and direction to cybersecurity.
Marcus Ranum and Gary McGraw discuss software security issues in this new bimonthly feature where Marcus Ranum goes one on one with a fellow security industry insider.