Using multi-tenancy public cloud space to store your data can provide companies a cost effective way to store data that comes with rapid access to new technology and good support. However, despite all the advantages of using a shared cloud, if something about a multi-tenant cloud makes you nervous, you’re not alone.
With multiple tenants sharing cloud space, the only way you can trust your neighbors is to protect yourself from side-channel attacks. One reason for these attacks occurring is when accounts and systems have flawed access controls, thus allowing unauthorized data access and flow. These attacks can be minimized by the implementation of physical and logical controls, like air-gapping and strong authentication and authorization.
Some of the main concerns when it comes to multi-tenancy clouds include:
- Your data is not onsite
- Your data may be vulnerable when it’s being transferred
- Your data may be running alongside competitor’s data and stored on the same devices
- Simple misconfigurations made by untrained users can leave data exposed
Cloud providers do offer some security controls such as firewalls to prevent customers from seeing or accessing each other’s data, but you will also want to take precautions to minimize your riskof an attack.
Use good encryption
One way to minimize the threat of a side-channel attack is by using good encryption. Encrypt your data before sending it to the cloud. And as a best practice, do not store your encryption keys within your data. Protect passwords. Make sure your staff changes passwords regularly.
Manage your staff
One of the bigger risks to your security is untrained employees. Make sure your staff knows the security procedures and understand the risks. Hire people you can trust with your security and don’t be afraid to monitor employees to make sure they are following proper security procedures.
Control mobile access to the cloud
Accessing the cloud from mobile devices is only going to increase as more companies use the cloud and more employees are bringing their own devices to work. If employees are accessing the cloud from their mobile devices, have a system in place to make sure those devices are secured against attack.
One way for employees to securely share data across their mobile devices, is make the data safe by using portable data-centric, file-level encryption.
A good way to protect yourself from security breach overall is to use strong encryption. If your data is encrypted, even if someone else gets a hold of it, they can’t use it. Making sure your staff understands the threats and knows your security procedure gives you an excellent second line of defense. Manage your cloud security and you can enjoy the benefits with less concern about the threats.