Dedicated to covering high-end cloud computing
in science, industry and the datacenter
August 09, 2010
Are Private Clouds Truly More Secure Than Public?
Almost anything one reads about the private versus public cloud debate contends that for enterprises with large amounts of data that requires strict security, the private cloud option is the way to go—that public clouds cannot and do not offer the protections that a private cloud enables. Then again, if one looks closer at who is making the statement about private clouds and their tighter security, it’s often from the vendors who are advocating private cloud solutions—and from the end users who believe in the idea because that is how it has been presented. But to what degree are private clouds more secure than public if one takes a general “one size fits all” approach to the question—if there can be such a thing?
The vast majority of writing on the public versus private debate contends that private clouds provide more control over access and data protection but as George Reese noted, this is a “myth” is “complete nonsense.” Reese argues that “some private clouds are more secure than some public clouds some public clouds are more secure than some private clouds. In some cases, no one really knows.”
Reese puts forth the argument that the key to security is transparency and suggests that if we operate under the false assumption that a private cloud provides complete transparency (which as he notes, private clouds still have some opacity) we are overlooking the nuanced nature of private and public clouds. He states, “total knowledge about a private cloud guarantees neither that it is secure nor that we are even competent to judge that knowledge with respect to security”
Many will defend the private cloud until the end, especially with the growing body of literature supporting their status as the more secure option. After all, when it comes to having less control over the location and infrastructure (at least theoretically) that shouldn’t have been a tough sell to companies who were well aware of potential security issues when they made the decision to deploy a cloud model for some or all of their operations. Reese argues that CloudAudit and other related services are the best way to get a direct view into the questions between public versus private on a more specific level but in the meantime, there should be more consideration offered to the actual improved security of the private cloud versus public in more forums and debates.
Full story at O'Reilly
Related Articles
ONF Drives Commercialization of SDN and the OpenFlow Protocol
GreenButton to Offer GridFTP Support for CloudSync
Hacking into the N-Queens Problem with Virtualization
Piston Cloud and Cumulus Networks Power the Software-Defined Datacenter
Discussion
There are 0 discussion items posted.
|
Join the Discussion |
RSS Feeds
Feeds by Topic
Feeds by Content Type
Subscribe to All Content
This Week's Headlines
Most Read Features
- CERN, Google, and the Future of Global Science Initiatives
- The Science Cloud Cometh
- Floating Genomics to the Cloud with AWS
- Research Roundup: Integrating Grids and Clouds
- CometCloud: Using a Federated HPC-Cloud to Understand Fluid Flow in Microchannels
- DDN, University College of London Aim at 100PB Research Network
- HPC in the Cloud: Old Wine in New Bottles
- CloudSigma CEO Elaborates on Science Cloud
- Examining Questions of Virtualization and Security in the Cloud
- SLA-Aware Scheduling and Virtual Efficiency
Most Read Around the Web
- IBM Acquires SoftLayer
- NASA Builds 'Climate in a Box'
- OpenStack and the SDSC Research Cloud
- Throwing Cancer on the BonFIRE
- IBM's Guide to Cloud Based HPC
- Running Stochastic Models on HTCondor
- Datapipe and Verne Global's Green Cloud
Most Read This Just In
- Spotify and NASA Join Strong Keynote Program at Cloud World Forum
- VMware Announces vCloud Hybrid Service
- Internet2 Establishes Direct Peering to Microsoft Cloud Services
- Leading Internet Experts Focus on Innovation at European Networking Conference
- Intellectual Ventures Announces Patent Agreement with Salesforce.com
- World's First Intercontinental 100 Gbps Link for Research and Education Demonstrated
- TwinStrata Introduces On-Demand Disaster Recovery as Service for VMware Users
- Gandi U.S. COO Presents New Cloud Technology at DotScale Conference
- ALVEA Infrastructure Services Selects Flexiant Cloud Orchestrator
- Intel Solid-State Drive Data Center S3500 Series Gives Cloud Computing Major Boost
Feature Articles
SLA-Aware Scheduling and Virtual Efficiency
Researchers from the Suddhananda Engineering and Research Centre in Bhubaneswar, India developed a job scheduling system, which they call Service Level Agreement (SLA) scheduling, that is meant to achieve acceptable methods of resource provisioning similar to that of potential in-house systems. They combined that with an on-demand resource provisioner to ensure utilization optimization of virtual machines.
Read more...
CloudSigma CEO Elaborates on Science Cloud
Experimental scientific HPC applications are continually being moved to the cloud, as covered here in several capacities over the last couple of weeks. Included in that rundown, Co-founder and CEO of CloudSigma Robert Jenkins penned an article for HPC in the Cloud where he discussed the emergence of cloud technologies to supplement research capabilities of big scientific initiatives like CERN and ESA (the European Space Agency)...
Read more...
Examining Questions of Virtualization and Security in the Cloud
When considering moving excess or experimental HPC applications to a cloud environment, there will always be obstacles. Were that not the case, the cost effectiveness of cloud-based HPC would rule the high performance landscape. Jonathan Stewart Ward and Adam Barker of the University of St. Andrews produced an intriguing report on the state of cloud computing, paying a significant amount of attention to the problems facing cloud computing.
Read more...
Sponsored Whitepapers
Best Practices in Big Data Storage
05/10/2013 | Cleversafe, Cray, DDN, NetApp, & Panasas | From Wall Street to Hollywood, drug discovery to homeland security, companies and organizations of all sizes and stripes are coming face to face with the challenges – and opportunities – afforded by Big Data. Before anyone can utilize these extraordinary data repositories, however, they must first harness and manage their data stores, and do so utilizing technologies that underscore affordability, security, and scalability.
Exploring the Potential of Heterogeneous Computing
04/02/2012 | AMD | Developers today are just beginning to explore the potential of heterogeneous computing, but the potential for this new paradigm is huge. This brief article reviews how the technology might impact a range of application development areas, including client experiences and cloud-based data management. As platforms like OpenCL continue to evolve, the benefits of heterogeneous computing will become even more accessible. Use this quick article to jump-start your own thinking on heterogeneous computing.
Sponsored Multimedias
Newsletters
HPC Job Bank
- Principal Software Research Engineer, Informatics
Pervasive Technology Institute at Indiana Univ - Network Engineer
NCSA - Associate Project Manager
NCSA - HPC UNIX/Storage System Administrator
Oak Ridge National Laboratory-UT Battelle - Systems Administrator I
Texas Advanced Computing Center - Senior Software Engineer
Texas Advanced Computing Center - Visit the HPCwire Job Bank
Featured Events
- June 26, 2013
- June 27, 2013
Cloud World Forum
London,
United Kingdom
- July 22, 2013
- July 25, 2013
XSEDE13: Gateway to Discovery
San Diego, CA
United States
- September 09, 2013
- September 09, 2013
10th Annual HPC for Wall Street
New York City, NY
United States
- November 17, 2013
- November 22, 2013
SC'13
Denver, CO
United States
