Search
Lori MacVittie - Two Different Socks
You are here: DevCentral > Weblogs

OMG! A VPN can secure connections into cloud computing hosted services

posted on Thursday, August 14, 2008 8:43 AM

SC Magazine reports that (1) cloud computing environments may not be very secure and (2) a VPN can improve the security of cloud computing environments.

Countering cloud computing threats via SC Magazine

Technology such as two-factor authentication systems, when married to encrypted VPN connections, can secure an internet connection into a cloud computing-based service.

That's the verdict from the Information Systems Audit and Control Association (ISACA), which concludes that using such techniques would tend to make interception of files and transmissions almost impossible.

Sarb Sembhi, president of the ISACA London Chapter, said, "While there is no such thing as a totally secure system, especially a system that is accessible across the internet, our belief is that, with the right technology, the new generation of cloud computing system can be made as secure -- if not more secure -- than existing server-based office systems."

ORLY? I think I've read something like that before...

Seriously (and with much less sarcasm) this is a good discussion and it's good to see others raising awareness of security when it comes to cloud computing, especially in the context of enterprise's potentially running business applications in the cloud.

I notice that the author doesn't qualify whether that VPN should be IPSEC or SSL, but given the complexity of PKI and the ability to roam-about more easily with an SSL VPN (not to mention the cost savings and ability to better control the endpoint you get with an SSL VPN) I'm thinking SSL is a better way to go. 

Not only is a SSL VPN for secure remote access much simpler and provides better control over application access, but it's accessible from just about any end-user device and it can be deployed without requiring software or hardware at the remote end. That means cloud computing providers could augment their offerings with an additional layer of security without investing (and managing) a heavy IPSEC infrastructure in two (or more) places.

 

Follow me on Twitter View Lori's profile on SlideShare AddThis Feed Button Bookmark and Share



One Comment

Feedback
2/24/2009 11:55 AM
Gravatar i don't recomend using cloud vpn
amir

Let Me Know What You Think

Please use the form below if you have any comments, questions, or suggestions.

Title:
 
Name:
 
Email: (so we can show your gravatar)
Website:
Comment: Allowed tags: blockquote, a, strong, em, p, u, strike, super, sub, code
 
Please add 8 and 4 and type the answer here:

Links

  
Are you interested in:
Search DevCentral to get answers to your questions.

Blog Stats

Posts:979
Comments:1685
Stories:0
Trackbacks:583
  

Tags

  

Post Categories

  

Archives

  

Image Galleries

  

Application Delivery

  

Cloud Computing

  

Random

  

Security

  

SOA

  

Chat Catcher

82,243 Members in 102 Countries and Growing!

Join DevCentral Today!

About DevCentral

DevCentral has been a successful, thriving community for many years. We have always strived to bring you the best technical documentation, discussion forums, blogs, media and much more that we can.

So dive in, get familiar with DevCentral. We hope you like it, we hope it makes your job easier, and lets you get that much more power out of the community. To learn more, make sure to check out the Getting Started section. And if you have any problems, or think something could be easier to use, drop us a line to let us know.

Got It !

We've received your comment and transmitted it directly to DevCentral HQ.

Thanks for taking time to let us know what's on your mind. At DevCentral | Community Matters!

Get In Touch With Us

Have questions, suggestions or just want to get something off your chest?

Use our handy form below to Direct Connect with DevCentral Mission Control.

Send Us Feedback       or
Copyright 1996 - 2011 F5 Networks, Inc.

Powered by the DevCentral Crew  |  Privacy Statement   |  Terms Of Use  |  Code of Conduct

Page generated faster than you can blink!