|
Comments
Did you read today's front page stories & breaking news?
SYS-CON.TV
|
Cloud Computing Viewpoint Cloud Security on Ulitzer: Cloud Computing and Self-Service Security
Cloud operators are not fulfilling customer needs by failing to roll out complimentary security capabilities
By: Mark O'Neill
Oct. 3, 2009 02:30 PM
Hat-tip to Gunnar for this link to Hoff's post on "Cloud Providers and Security “Edge” Services – Where’s The Beef?" So here’s the rub, if MSSP’s/ISP’s/ASP’s-cum-Cloud operators want to woo mature enterprise customers to use their services, they are leaving money on the table and not fulfilling customer needs by failing to roll out complimentary security capabilities which lessen the compliance and security burdens of their prospective customers. To this list I would add access management. Many organizations have significant investment in products such as SiteMinder, and naturally wish to use these also to control access to their Cloud-based resources. I have written before about how the Amazon Virtual Private Cloud provides a network security focused solution for bringing Cloud-based resources "behind the firewall" to some degree, but as yet Amazon is not addressing the need to bring Cloud-based resources into a corporate identity and access management framework. When an organization provisions a user in their corporate IdM systems, it makes sense that they can control the usage of Cloud services there also, rather than trying to mirror the user at the Cloud side, with all of the hassle that entails. SOA World Latest Stories
Subscribe to the World's Most Powerful Newsletters
Subscribe to Our Rss Feeds & Get Your SYS-CON News Live!
|
SYS-CON Featured Whitepapers
Most Read This Week |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||