TRUSTED FRONT DOOR TO THE CLOUD

PRESENTED BY

09/03/2011

Trusted front door to cloud

Flow of the Presentation

09/03/2011

Trusted front door to cloud

INTRODUCTION

Organizations are Increasingly turning to cloud computing. Analysts put the size of this market at
.

$42 billion by 2013

Organizations are pulled towards cloud Because:

Of the benefits it offers

Their competitors have started gaining an
advantage through it.
09/03/2011 Trusted front door to cloud 3

How Cloud can help?

09/03/2011

Trusted front door to cloud

09/03/2011

Trusted front door to cloud

The cloud isnt inherently more or less secure than an organizations existing environment, but its different particularly in its dependence on THIRD PARTIES.

Organizations have to make trade-offs between

09/03/2011

Trusted front door to cloud

 Requires

service-level agreements that guarantee

Enterprises

using several cloud-based service providers, must Manage issues across multiple operators, each with different infrastructures, operational policies, and security skills.
Trusted front door to cloud 7

09/03/2011

Drives the need for

Trusted Front Door To The Cloud

09/03/2011

Trusted front door to cloud

trusted front door is a security and trust brokering service that can encourage administrators, employees, and business partners to adopt cloudbased applications and processes by offering a single, convenient point of entry to multiple cloud services

09/03/2011

Trusted front door to cloud

 In

choosing trusted front door providers, organizations should evaluate how well they address the 4 key issues
1.

Assurance

2.Governance
3.Control 4.Reliable Performance
09/03/2011 Trusted front door to cloud 10

09/03/2011

Trusted front door to cloud

11

Trust providers should deliver assurance Through:

Stringent user authentication and authorization

Additional consideration given to highprivilege or high-risk users

Demonstrate that they will deny access to unauthorized users according to the enterprises access policy
Trusted front door to cloud 12

09/03/2011

Should protect and monitor user devices to assess whether they should be allowed to access sensitive cloud resources .
Inserting additional layers of security such as
Trusted Front Door could converge on a

Multi-factor authentication

Cloud Security Standard

A provider may then require that SaaS and Platform-as-a-Service providers be certified according to these standards.
Trusted front door to cloud 13

09/03/2011

09/03/2011

Trusted front door to cloud

14

Organizations should assess any cloud-service providers security governance processes and capabilities for Sufficiency, Maturity and

Consistency

The Trusted Front Door should

Avoid credential leakage by leveraging bootstrap credentials and authentication from a trusted source within the organization Adhere to standards such as SAML, OAUTH, and XACML to avoid later lock-in
09/03/2011 Trusted front door to cloud

OPENID,

.
15

09/03/2011

Trusted front door to cloud

16

 Trust

providers must offer full Tracking, Auditing and Reporting on their effectiveness in providing those services.
trusted front door represents a unique opportunity to consolidate access event logs, simplifying audit trails and compliance reports.
Trusted front door to cloud 17

The

09/03/2011

09/03/2011

Trusted front door to cloud

18

The Trust Provider Must:

09/03/2011

Trusted front door to cloud

19

09/03/2011

Trusted front door to cloud

20

The Cloud Security Alliance brings together top service providers to help establish best practices and common standards for creating trusted front doors to cloud-based assets and for opening channels between online resources

Thus is creating a blueprint for trust that can expand and adapt to match the growth and development of cloud computing
Trusted front door to cloud 21

Cloud Security Alliance

09/03/2011

09/03/2011

Trusted front door to cloud

22

09/03/2011

Trusted front door to cloud

23