 |
||||||
|
||||||
 |
||||||
 |
 |
 |
 |
 |
 |
|
Ignoring Cloud risks does not make them go awayDespite the agility and cost advantage of Cloud computing, IT departments have adopted Cloud slowly over concerns of security, privacy, compliance, and reliability. While IT remains cautious, business users have fully embraced Cloud based services. Cloud usage in the enterprise today is widespread and uncontrolled, with neither security nor audit. Whether Cloud is strategic to IT or not, as long as Cloud based services are being used, IT must manage Cloud based risks. Using Vordel Cloud Gateway reduces Cloud related risksWhether the driver is better collaboration, more efficiently data movement, or business development, everyday business users are uploading sales, customer, operations, and product data into Dropbox and LinkedIn. Developers and QA stand up applications at Amazon and Force.com. To control Cloud risks, IT must publish a list of approved services and make these services easy to use, monitor the usage, and ensure secured integration. 
Promote the Use of Approved ServicesIt is impossible to completely eliminate rogue usage, but most employees will try to comply if a list of approved Cloud services is provided with usage policies. Simplify the use of approved services will further reduce rogue usage. Single sign-on (SSO) and usage reporting are two effective ways to encourage usage of approved services. Vordel Cloud Gateway simplifies Cloud SSO with out-of-the-box integration from all the leading identity management platforms to the most popular Cloud services such as Amazon, Google Apps, Microsoft Azure, and Salesforce.com
Centrally Protect and Manage API KeysCloud based services use API key for identification and signing. Any application looking to integrate with the Cloud service will need access to the API key. Distributing API keys from the various Cloud services to all the on-premise applications is operationally difficult and insecure. It is best to store the API keys centrally at the Vordel Cloud Gateway and delegate key management and signing to the Gateway. Storing keys using the Gateway's on-board or network based HSM options further improves security.
Enforce Data Security PoliciesBusiness users and application developers do not understand the security risks associated with the Cloud. It is all too easy to have sensitive data uploaded into the Cloud, violating security policies and creating compliance issues. Vordel Cloud Gateway scans messages and data payloads bound for the Cloud against security and privacy policies. Based on the type of data and Cloud service, the Gateway can block, redact, remove, or encrypt data before they leave the premise.
Audit and Monitor Cloud UsageCloud based services are easy to buy by design. Services can be purchased with credit cards, usage can be increased instantaneously, and subscription automatically renews. These conveniences can lead to waste and abuse. By monitoring and reporting on Cloud usage, enterprise can negotiate more favorable terms, release resources no longer used, and match expenses to projects. |
 |
VordelThe VisionLeadership Investors Careers Events News |
|
SolutionsAccess GatewayAPI Gateway SharePoint Gateway Siebel Gateway Cloud Gateway B2B Gateway Mobile Gateway Security Token Service Application Firewall XML Accelerator Client Connect Cisco ACE Replacement DataPower Replacement |
|
ResourcesWorkshopsArticles Most Popular Datasheets Deployment Guides API Management B2B Integration Cloud Integration Gateway 101 Identity Management Mobile SOA Governance |
|
MediaEventsNews Blog | |
Get HelpContact UsCustomer Support |
|
Follow Us on:
©2012 Vordel Inc., |
