• No results found

APAC OF POSSIBILITIES: TIPS FOR INCREASING CLOUD SECURITY AND ADOPTION

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "APAC OF POSSIBILITIES: TIPS FOR INCREASING CLOUD SECURITY AND ADOPTION"

Copied!
38
0
0

Loading.... (view fulltext now)

Download now ( 38 Page )

Full text

(1)

Session ID:

Session Classification:

Ken Low

Director of Enterprise Security, Asia Pacific, Trend Micro

Chairman, Asia Pacific Executive Council, Cloud Security Alliance

CLD-W03

Intermediate

APAC OF POSSIBILITIES:

TIPS FOR INCREASING

CLOUD SECURITY AND

ADOPTION

(2)
(3)

One Cloud …..

3

(4)
(5)

Largest pure-play

security provider

Deliver top

ranked security

solutions

Market leader in Server,

Virtualization, and Cloud security

Secures your

journey to the cloud

Take advantage

of the cloud

Source: IDC (2011), Technavio (2011 & 2012)

Trend Micro Overview

5

(6)
(7)

Global Alliances

7

(8)
(9)

Cloud Security in

Asia Pacific

(10)
(11)

Source: 2013 BSA Global Cloud Computing Scorecard 11

(12)

Source: Cloud

Readiness Index 2012, Asia Cloud Computing Association

(13)

Predicted national cloud-related job growth figures from 2012-2015:

Japan

155%

Australia:

129%

Singapore:

109%

Malaysia:

107%

Indonesia:

103%

India:

99%

Source: IDC

Cloud-related job growth in Asia Pacific

13

(14)

Trend Micro’s annual survey of 1400 IT decision makers from the U.S., UK, Germany, India, Canada, Japan and Brazil found significant regional

differences in cloud security.

► India had the highest incidence (67 percent) of data security lapse or issue, a full 12% higher than the next highest country, Brazil (55 percent.)

► India also had the highest – 12 percent -- increase of security lapse or issue from 2011

► Japan had a 7 percent increase in security lapse or issue, about the same as Canada at 6 percent

► Japan is less likely to adopt cloud computing than all the other countries surveyed.

► Japan also has the lowest usage level for VDI, public cloud and private cloud.

Source: Trend Micro

(15)

Tips for increasing

cloud security and

adoption

(16)

Cloud Marketing Fairytales: Who Owns Security

You Shared Public Private Shared Hybrid

(17)

The AWS Shared Responsibility Model

 Facilities  Physical Security  Physical Infrastructure  Virtualized Infrastructure

Enterprise Applications

Enterprise Operating Systems

Partner Eco-System Cu st ome r Doma in A W S Doma in  Operating Systems  Application  Security Groups  OS Firewalls  Anti-Virus  Account Management  Storage Encryption 17

Copyright 2013 Trend Micro Inc.

(18)

CSP is responsible for the compliance of what they manage

Customer is responsible for what’s not addressed by CSP

Customer is responsible for monitoring CSP’s compliance

(19)

Security and availability are inseparable

What’s holding back cloud adoption? (Trend Micro survey)

54

%

- security of data or cloud infrastructure

50%

- performance / availability of cloud

Copyright 2013 Trend Micro Inc.

(20)

Where Does Cloud Security Come From?

Security Tools

Cloud Service

Provider

You

Security

Knowledge

Technical

Operations

Domain

| Few years ago |

Now

Software

& Cloud

Hardware

& Software

Big Data

& Research

Threat Research

(21)

T H R EAT D AT A

C U ST O M ER S T H R EAT I N T EL L I G EN C E

Using The Cloud For Security Knowledge

Identifies

Multiple data

centers

Multiple

threat

vectors

Living data

Massive

scale

1.15B Threat Samples Daily 90K malicious threats daily

200M Threats blocked daily

Copyright 2013 Trend Micro Inc.

(22)

Cloud providers need non-cloud security

data

Security companies need really good clouds

Cloud providers better choose security

partners carefully

Security providers better choose cloud

partners carefully

(23)

Where Does Cloud Security Come From?

Tools

Cloud Service

Provider

You

Knowledge

Operations

Domain

| Few years ago |

Now

Software

& Cloud

Hardware

& Software

Big Data

& Research

Threat Research

Software

& Cloud

Copyright 2013 Trend Micro Inc.

(24)

Foundational cloud components are pluggable

Security is not (mostly)

Security industry software and VM model is not

CSP ready

CSPs want carrier-grade security tools, not

server-grade

(25)

Cloud security tools need native multitenancy

Software release cycle mismatch: software vs cloud

Security performance hit costs CSPs real margin

Time to rethink cloud security so it works better with

CSPs

Time to move security consoles to the cloud

Why Software and VMs Won’t Satisfy CSPs

Copyright 2013 Trend Micro Inc.

(26)

Performance

Multi-tenancy

Management

(27)

Agentless for virtual, private, and public cloud

environments

Integrated single agent available when

required

SaaS based console and management for

agility

Upgrading Cloud Security Performance

Copyright 2013 Trend Micro Inc.

(28)

Multitenant architecture

► Delegation and self-service for cloud tenants

► Automated deployments of components for elastic scaling

Common cloud API integration (AWS, vCloud, etc.)

Shared security profiles across all deployments

(29)

Shared security profiles across all deployments

Common cloud API integration (AWS, vCloud, etc.)

Single management pane-of-glass for private, VPC,

public

Hierarchical policy management

Cloud-resident, SaaS-based security consoles

Upgrading Cloud Security Management

Copyright 2013 Trend Micro Inc.

(30)

Future of Cloud Security: Shared Dependency

Security tools

Cloud Service

Provider

Knowledge

Operations

Software

& Cloud

Big Data

& Research

Domain

|

Now

|

Future

Cloud Service

Provider

Cloud resident

Cloud aware Cloud managed Cloud release cycles

Realtime data Cloud & non-cloud

(31)

Securing Your

Journey To The

Cloud

(32)

Productivity HR CRM Customer Support Finance Supply Chain Commerce Employees Partners Customers

Business App Owners

(33)

Data Center

Productivity HR CRM Customer Support Finance Supply Chain Commerce

Data Center Ops

(34)

Data Center

Physical Virtual Private Cloud

• Server and VM integrity

• Appropriate policy enforcement

• Data protection, especially in the cloud

• Performance and manageability

Public Cloud

Data Center Ops

(35)

Data Center

Physical Virtual Private Cloud Public Cloud

Cloud and Data Center Security

Anti-Malware Integrity Monitoring Encryption Log Inspection IPS & Virtual Patching Firewall

Integrated Cloud Security

(36)

► Help cloud providers address the top barrier to cloud adoption – security.

Cloud providers in APAC need to clarify their offerings, policies,

technology, service-level agreements and how they manage cloud security, privacy and security incidents.

The Cloud Security Alliance offers free cloud security self-reporting frameworks for cloud providers to address enterprise concerns about security in the cloud.

Partner with virtualization aware security vendors to create compelling

secure cloud service offerings for enterprises e.g. agentless virtualisation security like Trend Micro’s Deep Security.

Creating safe clouds in APAC will help regional economies grow quickly,

powered by the growth of the cloud.

(37)

20-21 August 2013,

8am – 6pm

Raffles City

Convention Centre,

Singapore

Register:

www.cloudsec.co/sg

(38)

Thank You

Ken Low

Director of Enterprise Security, Asia Pacific, Trend Micro

Chairman, Asia Pacific Executive Council, Cloud Security Alliance

References

Download now ( PDF - 38 Page - 1.92 MB )

Related documents

Course Description. CENG 732 Computer Animation. Course Objectives. Lecture Time/Place. Prerequisites. Textbook

• Computer animation borrows a lot of ideas from conventional animation in terms of production approaches. • However, there

Synchronising Vehicles During Active Safety Systems Testing

As we are testing Active Safety Systems, the test scenario will be designed to use the Test Targets to force a particular behaviour from the VUT however we may inadvertently

Effect of a sugar-free chewing gum containing Magnolia bark extract on the development of caries lesions in healthy adult volunteers: a randomized controlled intervention trial

PCA analysis supports the concept that caries risk is divisible into patterns attributable to distinct risk factors that work in accord: in the total sample two different

Predictive remapping of visual features beyond saccadic targets

To more directly contrast the convergent and forward remapping hypotheses, we designed Experiment 3, in which two oppositely oriented adaptors were presented simultaneously

Radio Galaxy Physics at Low Frequencies: Lobes, Jets and Environments

Observations of inverse-Compton emission from components of radio-loud AGN in principle allow us to determine the magnetic field strength in those components — the energy loss rate

A Simplified Approach for the Annual and Spatial Evaluation of the Comfort Classes of Daylight Glare Using Vertical Illuminances

The spatial distribution of the daylight glare comfort classes shows, as one would expect, that a worse glare condition is perceived for the points closer to the window, while

Entry into motherhood: The effect of wages

Therefore, we estimated a potential wage for each woman in the sample, independently of her labour market status, and used this potential wage to study the effect of female wages on

When the minimum wage bites back : quantile treatment effects of a sectoral minimum wage in Germany

As a result of this wage moderation, workers experienced deteriorating real wages resulting in a strong wage compression at the upper tail of the real hourly wage distribution