People who drive recklessly to the airport, at a high rate of speed while clutching a cellphone to their ear, only to then board the plane and pray it does not crash, often bewilder me. Don’t they realize they bear some responsibility for arriving safely at their destination?
Trend Micro’s webinar on the new PCI DSS Cloud Computing guidelines is a reminder that while the cloud represents an enormous opportunity for offloading the data center burden; your security responsibility doesn’t necessarily follow. (Miss this popular webinar with Amazon and Accuvant? Click here to watch the replay).
When organizations host applications within their own datacenters, they control – and are responsible for – the physical, network and application security. When organizations host their applications in the cloud, they cannot absolve themselves of all responsibility for securing their applications by saying “its in the cloud, the cloud provider is responsible.” Thus the concept of “shared responsibility” or shared risk is born. The public cloud provider and cloud customer share responsibility for securing applications hosted in the cloud.
AWS details their specific responsibilities as the cloud provider versus what you, the customer, must do.
The public cloud provider, such as AWS, will usually provide the following:
You, the cloud customer, are responsible for:
To help put these principles into practice, we’ve started a detailed examination of best practices in securing your AWS cloud deployments. You can read our first and second articles with AWS tips, and stay tuned for more in the future.
Share your experience and lessons learned! We’d love to hear from you in the comments below. And, if you’re interested in easily securing your AWS EC2 application, please request a trial of Trend Micro’s new Deep Security on Demand service for cloud servers like Amazon EC2. Currently in Beta, we’d love you feedback on this new service that allows you to add intrusion prevention, anti-virus, virtual patching and more to all your EC2 instances in less then 15 minutes!