Go4Hosting
https://go4hosting.in/forum/

What is the Way to Secure Data for Carrying in the Cloud?
https://go4hosting.in/forum/viewtopic.php?f=22&t=206488
Page 1 of 1

Author:  Aastha gupta [ Thu Jun 28, 2018 4:41 pm ]
Post subject:  What is the Way to Secure Data for Carrying in the Cloud?

What is the Way to Secure Data for Carrying in the Cloud?

Author:  shrisha [ Thu Jun 28, 2018 5:27 pm ]
Post subject:  Re: What is the Way to Secure Data for Carrying in the Cloud

The data security for carrying over to the Amazon cloud includes several capabilities to ensure maximum privacy and controlled network access. They include:

Infrastructure security:

Network firewalls are built into the Amazon cloud that allows the users to build their private networks and get access to their instances (virtual machines) and applications. Data encryption with TLS when in transit.

DDoS mitigation:

Amazon Web Services ensures availability of client business with some pre-configured strategies to thwart any possibility of D-DoS attacks. With auto-scaling, CDNs and Route53, AWS has taken many effective steps to lessen the risks of any D-DoS attacks.

Encryption:

Data encryption features are available in all the AWS storage and DB services like EBs, S3, Oracle RDS, Glacier, SQL Server RDS, RedShift etc. The users can choose to let AWS manage the encryption keys or they can keep it under their control. Server-side encryption is done to all the sensitive information.

Inventory and configuration:

There are a set of tools that AWS offers for you to make sure your cloud resources are on par meeting the standards and best practices.

1. Amazon Inspector checks for the application vulnerabilities on networks, OS, external storage etc.
2. Deployment tools to manage decommissioning of AWS resources
3. AWS Config tools identify and track AWS resources.
4. AWS CloudFormation to build pre-designed configured environments.

Monitoring and logging:

AWS tools like CloudTrail provides information about API calls -who made, from where, and for what it was made. It provides alerts and notification through the CloudWatch for any specific occurrences or brinks.

Identity and Access control:

The AWS IAM defines the individual user accounts with their privileges to access.

AWS Multi-factor authentication and AWS Directory services to control and reduce administrative overheads and enhance end-user experience.

Penetration testing:

This requires prior approval from Amazon Web Services[/b] which must be obtained by submitting a form. In general, only testing of EC2 and RDS testing is allowed.

Page 1 of 1 All times are UTC + 5:30 hours
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/