ACCELERATING SECURE CLOUD ADOPTION
Large number of enterprises are adopting hybrid cloud to scale their computing needs and take advantage of the cost-effective public cloud computing. Customer-facing web servers, which are deployed in the public cloud, contain no proprietary information, access internal virtual database servers that reside in the data center. Enterprises, such as financial companies, employ this strategy to remove compliance and regulatory requirements stemming from having no proprietary information reside within cloud environments.
Albeit innovative, the solution is greatly affected by the following:
- Cloud providers maintain their own IP addressing scheme, different from enterprises and require translations to communicate with virtual servers within the data center.
- Security controls for virtual servers in the cloud and in the data center must be coordinated with any additions or deletions of virtual servers. This ensures web virtual servers in the cloud can communicate to application virtual servers in the data center.
- Security changes must be made quickly and correctly to remove any chances of having security holes.
OneControl’s Cloud Security Module uniquely solves the problem by ensuring additions or deletions of virtual servers in the Cloud are immediately reflected in the firewall policy that secures the cloud. Likewise, for any additions or deletions of virtual servers in the data center, Virtual Security Module sends the appropriate configuration to the firewall that secures the data center. Both Cloud Security Module and Virtual Security Module provide the OneControl platform with real-time event information of any changes in the cloud and virtual environments, respectively, effectively identifying cloud security risks as they occur. These events are then processed by the OneControl platform to determine if any configuration changes are needed to network security devices. This coordination is in real-time and automated, including:
- Removal of any manual coordination required between the enterprise and the cloud provider.
- Virtual servers in the cloud can dynamically grow securely when traffic burst occurs.
- Audits and logs are automatically made, ensuring notification and greater compliance.
- Coordination of changes for firewalls in the cloud and the data center are immediate, and unattended.
- Greater return-on-investment from cloud infrastructure, and increase savings from automations.