The Cloud Security Debate: Is Cloud Computing More or Less Secure than Traditional In-house IT?
The most frequently cited barrier to enterprise adoption of cloud computing is security. Proponents of cloud computing often cite centralized security controls, the ability of some cloud computing services to limit access to specific, authorized IP addresses, and robust, granular access controls as reasons that cloud computing can be more secure than traditional IT. Those concerned about the inherent security of cloud computing cite a myriad of security issues, including the security of multi-tenant architectures, data security, compliance and audit, and a host of other concerns. The answer to the question that this debate poses is highly dependent on context, that is, on the kind of cloud service being used (infrastructure, platform, or software as a service), on the kind of data and applications to be used, and on the robustness of the enterprise’s inhouse IT security.
This debate will explore both sides of the cloud security argument.
Moderator Dana Gardner Principal Analyst at Interarbor Solutions, and ZDNet Blogger
Panelists
On one side: Cloud Computing Is (Or Can Be) More Secure Than Traditional IT Systems
Glenn Brunette, Distinguished Engineer and Chief Security Architect at Sun Microsystems, and a Cloud Security Alliance member.
For over 15 years, Glenn has architected and delivered security solutions for a wide range of customers and industries. Currently, as a member of Sun's Chief Architect's Office, Glenn leads Sun's security initiatives for Cloud Computing and other highly-scalable and dynamic environments. Glenn develops architectures, patterns, best practices, and tools enabling improved security for Cloud Computing and other highly-scalable, dynamic environments. A photo is attached.
Doug Howard, Chief Strategy Officer, Perimeter eSecurity and President, USA.NET
On the other side: Cloud Computing Is Less Secure Than Traditional IT Systems
Chris Hof, Director of Cloud and Virtualization Solutions, Cisco , and Cloud Security Alliance member
Dr. Richard Reiner, Chairman and CEO of Enomaly, is a pioneer and leader in the cloud computing space. Previously, Richard was the founder, CEO, and CTO of Assurent Secure Technologies, a SaaS company in the IT Security space that was acquired in 2006 by TELUS, a Global 1000 corporation. At Assurent, Richard led the creation of the world's leading threat intelligence capabilities, which today power 48 of the world's top 50 IT security product companies, as well as leading financial services, high-tech, law enforcement, and national intelligence organizations around the world. Subsequent to the acquisition of Assurent, Richard served as Chief Security & Technology Officer at TELUS, ensuring the success of the Assurent acquisition and playing a key role in several breakthrough wins for TELUS. Since 2006, Richard has served on the Boards and Advisory Boards of many highly regarded early-stage companies in the IT infrastructure, security, and SaaS sectors, such as Veracode, Netclarity, Virima, Stonewall Software, and Fonolo.
Richard is often quoted by the press, and has appeared on the cover of CIO Magazine, as well as frequent appearances in media such as the New York Times, CBS, NBC, USA Today, etc. and hundreds of technology publications. He holds a Ph.D. and multiple patents in the field of software security.
