A SECURED CLOUD SERVICE ENVIRONMENT AND BRIEF ABOUT SECURITY TRANSPARENCY


Cloud security basically means the protective and preventive measures taken in cloud computing which consists of a set of policies, controls, procedures and technologies that work together to protect cloud-based systems, data, and infrastructure. These security measures are configured to protect cloud data, support regulatory compliance , protect customers' privacy and also to line authentication rules for individual users and devices Cloud security can be configured to the precise needs of the business ,from authenticating access to filtering traffic These rules are often configured and managed in one place, administration overheads are reduced and IT teams empowered to concentrate on other areas of the business.

Cloud security offers many benefits, they are as follows:


👉 Centralized security: Cloud computing centralizes applications and data, cloud security centralizes protection. Cloud-based business networks contains numerous devices and endpoints which will be difficult to manage when handling shadow IT Managing these entities can centrally enhance traffic analysis and web filtering, streamlines the monitoring of network events and results in fewer software and policy updates.


👉Reduced costs: one among the advantages of utilizing cloud storage and security is that it eliminates the necessity to take a position in dedicated hardware. This reduces capital expenditure and administrative overheads.


👉Reduced Administration: once you select a reputable cloud services provider or cloud security platform, you'll bid adieu to manual security configurations and almost constant security updates. These tasks have a huge drain on resources, but once you move them to the cloud, all security administration happens in one place and is fully managed on your behalf.


👉Reliability: With the right cloud security measures in place, users safely access data and applications within the cloud from any device anywhere.


👉Integrity: The data is assured to be consistent and accurate throughout.


👉Confidentiality :The data is allowed to be used by only authorized person so that no data breach takes place .It can be maintained by different authentication processes.



AWS Security vs Azure Security – A Comparison:


The comparison of AWS Security vs Azure Security should primarily focus only on the services in several aspects of cloud security. The noticeable areas to consider for the comparison of AWS vs Azure services are as follows

👍Identity and Access Management - Identity and access management is a significant aspect of cloud security from a customer’s perspective.Azure cloud security and AWS cloud security have completely different approaches to identity and access management. Microsoft has extended its legacy identity manager, the Active Directory, from Windows to Azure. The Azure AD comes with a free tier having certain data limits and three distinct paid tiers. The paid tiers of Azure AD accompany advanced features like abilities for the management of hybrid environments. On the opposite hand, AWS offers cloud-centric IAM exclusively without incurring additional charges. The in-built IAM in AWS supports the effective management of cloud environments. It integrates with other on-premises tools such as Active Directory for achieving its functionality.

👍 Key-Based encoding - The AWS Security vs Azure Security comparison in terms of key-based data encryptions brings Amazon KMS and Azure Key Vault into question. Both these tools offer encoding at rest also as in transit. In addition, both tools also support key management. You need total control over the encryption and management of keys in certain cases. You can answer such cases with the assistance of a Hardware Security Module (HSM). In the case of Azure, you'll find the HSM in-built with Key Vault. On the other hand, the KMS service and Cloud service are separate on AWS. The positive side of this aspect is that pricing is almost similar on both Azure and AWS.

👍 Encryption of Storage Data One more important aspect of cloud security comparison is the encryption of stored data. Object data encryption is very critical component of cloud security and is a profound determinant in the selection of a cloud platform. The Simple Storage Service also known as S3 in AWS and Blob on Azure provide the cloud storage services and support encryption of data with keys. Azure doesn’t have support for allowing customers to manage keys although the feature would arrive soon. On the other hand, AWS provides the exclusive option for allowing AWS to manage your keys or prefer to manage your keys personally. Therefore, AWS certainly presents better control over cloud security in comparison to Azure for storage data encryption.


So after so many security benefits ,the very main point at the user's side is Security transparency as it is a crucial resource that provides sufficient visibility of security procedures and practices implemented by a cloud service provider to protect users’ sensitive data and applications.




SECURITY TRANSPARENCY

Transparency is vital means for strengthening information disclosure and enhances users trust in using cloud services. It is important aspects of operations that safeguard visibility regarding some important areas such as performance, billing, configuration, workload etc.


Transparency categories:

1.Protactive

2.Reactive

3.Contractual


1. Proactive Transparency (Voluntary)
Proactive transparency means release of information, in which the cloud service provider
voluntarily provides information to the users by using various agents or other manual process.

Information shoots From Service providers initiatives to send security information to clients

This information can be produced through various methods such notifications or reports

without being asked. such as benchmarks, whitepapers, websites, portals, etc.

to assist customers evaluate basic cloud service provider, its controlled environment.

This discovery is generally proposed to improve customer trust and confidence. It also helps

not reveal information that could expose the security posture of a provider or expose them in

It also helps customer to address some targeted questions around general practices. It does negative way.

2. Reactive Transparency (Necessary)
Reactive transparency involves a request driven approach where a Cloud service Provider is
anticipated to respond to a user’s specific request. It emerges from a request-response routine between a Cloud Service Customer and Cloud Service Provider for the closing to provide additional information.

Cloud Service Provider is expected to respond to a users’ request to provide additional information. It starts from a request response routine between Cloud Service Customer and Cloud Service provider

3. Contractual Transparency (Statutory)
This suggests that a Cloud Service Provider is legally instructed by the law to provide
transparency while giving services to Cloud Service Customer. It involves a valid agreement
where the Cloud Service Provider observes essential security services on an individual basis,
while refraining from revealing information that could compromise the privacy of users.



Comments