One very definite challenge to server security is with software updates. Cloud-based software has the unique ability to show a new version of software when each page is updated. So imagine that you have a page that has been updated a hundred times and you have several versions of that software sitting out there on your server. Each of those are a separate security risk.

How does that change the security of your server? Well, it obviously makes you more vulnerable.

But, can you fix it?

You can, but it is challenging. You have to look at cloud server security as a component of its own rather than as a component of your server configuration. With that in mind you should look at each server in light of the following three principles.

  1. Elasticity – Each server needs to be elastic enough that you can have the same level of security as you scale up and down, but you should also have the same level of security as you maneuver horizontally. Scalability and flexibility are only benefits if you have security to back them up.
  2. Programmable – You have to have the ability to program security for each application and each software package on the server as opposed to expecting one level of security for the entire server to protect everything on that server.
  3. Adaptive – Not only should you expect server security to match scalability and flexibility protocols as well as be programmable for each software and application package, but you should also be able to configure security for each user level. If you have server work groups that allow for security configuration per work group then you can allow each user and management representative in your company to do the work they need to do on the server and keep it secure.

Cloud computing has its challenges, especially where security is concerned, but they can be overcome.

Advertisements