SlideShare uma empresa Scribd logo

Cloud Security: Tips and Myths

Transferir como PPTX, PDF
Procurify.com
Procurify.com

Slides from the May 1st Webinar: "Cloud Security: Top Tips and Debunked Myths" This webinar covers some common misconceptions about the security of your business infrastructure in the cloud. It also teaches you some best practices for you and your business to keep your data protected.

TecnologiaNotícias e política
1 de 8
Eugene Dong @Eugened @Procurify Edwin Frondozo: @drgnmeme @Slingshotvoip
Overview  Introduction  Format  Security in the Cloud  What is cloud?  Heartbleed Bug  Security issues (real and imagined)  Best Practices  Questions Join the Conversation: #CloudMasters Edwin Frondozo: @drgnmeme @Slingshotvoip Eugene Dong @Eugened @Procurify
What is the Cloud?  Storing and accessing data and programs on the internet instead of your computer's hard drive  Google Drive, Apple iCloud, Samsung Chromebook, SaaS, VoIP, etc.  Benefits (some)  Accessibility  Real-time vs. versioning  Backup  Scalability and low-cost  Increased security  And more….
Heartbleed Bug  Not the norm - loophole  How it worked:  Scrape data from server memory  500,000 websites  Top 100 websites and their “patch” status: http://www.cnet.com/how-to/which-sites-have- patched-the-heartbleed-bug/  Don’t change your password until they have fixed the bug  Start with banking, email  Protect yourself  Don’t use public Wi-Fi  Change your passwords  Clear browsing history and passwords  Check your bank statement
Is the Cloud Secure? Classic Concerns:  Control over administration  Geographic control of information  Shared server space, “noisy neighbours”  Control over virtualization  Shared infrastructure and settings  Collateral damage  Blacklist of an IP in a public cloud  Data export lock-in
Best Practices 1  Keep up with security news!  Keep your internal security up to date  This can often be weaker than your cloud’s security measures  Are your employees on the cloud?  Rise of BYOD culture  Have your IT team make a list of what is ok for them to use  Baby steps in cloud migration
Best Practices 2  Keep software testing and sensitive data off the cloud  Investigate your cloud providers  Back up your data  Use a smart password  Not “Password” or “1234”  Letters, numbers, special characters  Disconnect chrome extension  Log out when you shut down your systems
http://www.slingshotvoip.com http://www.procurify.com

Recomendados

10am in Sheffield, 6pm in Kuala Lumpur? Delivery and promotion of information...
10am in Sheffield, 6pm in Kuala Lumpur? Delivery and promotion of information...10am in Sheffield, 6pm in Kuala Lumpur? Delivery and promotion of information...
10am in Sheffield, 6pm in Kuala Lumpur? Delivery and promotion of information...IL Group (CILIP Information Literacy Group)
 
Video Creation 101 for Advisors
Video Creation 101 for AdvisorsVideo Creation 101 for Advisors
Video Creation 101 for AdvisorsLoic Jeanjean
 
Responsive code
Responsive codeResponsive code
Responsive codeRoy Degler
 
Google chrome operating system
Google chrome operating systemGoogle chrome operating system
Google chrome operating systemkondalarao7
 
Cloud computing: An introduction
Cloud computing: An introductionCloud computing: An introduction
Cloud computing: An introductionNorth Bend Public Library
 
SOC Meets Cloud: What Breaks, What Changes, What to Do?
SOC Meets Cloud: What Breaks, What Changes, What to Do?SOC Meets Cloud: What Breaks, What Changes, What to Do?
SOC Meets Cloud: What Breaks, What Changes, What to Do?Anton Chuvakin
 
Building Social Enterprise with Ruby and Salesforce
Building Social Enterprise with Ruby and SalesforceBuilding Social Enterprise with Ruby and Salesforce
Building Social Enterprise with Ruby and SalesforceRaymond Gao
 
How My Website Learned to Stop Worrying and Love the Cloud
How My Website Learned to Stop Worrying and Love the CloudHow My Website Learned to Stop Worrying and Love the Cloud
How My Website Learned to Stop Worrying and Love the CloudMike Richwalsky
 

Recomendados

10am in Sheffield, 6pm in Kuala Lumpur? Delivery and promotion of information...
10am in Sheffield, 6pm in Kuala Lumpur? Delivery and promotion of information...10am in Sheffield, 6pm in Kuala Lumpur? Delivery and promotion of information...
10am in Sheffield, 6pm in Kuala Lumpur? Delivery and promotion of information...IL Group (CILIP Information Literacy Group)
 
Video Creation 101 for Advisors
Video Creation 101 for AdvisorsVideo Creation 101 for Advisors
Video Creation 101 for AdvisorsLoic Jeanjean
 
Responsive code
Responsive codeResponsive code
Responsive codeRoy Degler
 
Google chrome operating system
Google chrome operating systemGoogle chrome operating system
Google chrome operating systemkondalarao7
 
Cloud computing: An introduction
Cloud computing: An introductionCloud computing: An introduction
Cloud computing: An introductionNorth Bend Public Library
 
SOC Meets Cloud: What Breaks, What Changes, What to Do?
SOC Meets Cloud: What Breaks, What Changes, What to Do?SOC Meets Cloud: What Breaks, What Changes, What to Do?
SOC Meets Cloud: What Breaks, What Changes, What to Do?Anton Chuvakin
 
Building Social Enterprise with Ruby and Salesforce
Building Social Enterprise with Ruby and SalesforceBuilding Social Enterprise with Ruby and Salesforce
Building Social Enterprise with Ruby and SalesforceRaymond Gao
 
How My Website Learned to Stop Worrying and Love the Cloud
How My Website Learned to Stop Worrying and Love the CloudHow My Website Learned to Stop Worrying and Love the Cloud
How My Website Learned to Stop Worrying and Love the CloudMike Richwalsky
 
Introduction to cloud computing
Introduction to cloud computingIntroduction to cloud computing
Introduction to cloud computingDigital Shende
 
Adobe Hacked Again: What Does It Mean for You?
Adobe Hacked Again: What Does It Mean for You? Adobe Hacked Again: What Does It Mean for You?
Adobe Hacked Again: What Does It Mean for You? Lumension
 
Sept 2014 cloud security presentation
Sept 2014 cloud security presentationSept 2014 cloud security presentation
Sept 2014 cloud security presentationJoan Dembowski
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud ComputingJoel May
 
Cloud Computing: What it Means/Does/Costs and Why You Should Care
Cloud Computing: What it Means/Does/Costs and Why You Should CareCloud Computing: What it Means/Does/Costs and Why You Should Care
Cloud Computing: What it Means/Does/Costs and Why You Should CareDW Nelson
 
Cloud theory and Practical.pptx
Cloud theory and Practical.pptxCloud theory and Practical.pptx
Cloud theory and Practical.pptxrubben7
 
What is 'Cloud Computing'?
What is 'Cloud Computing'?What is 'Cloud Computing'?
What is 'Cloud Computing'?CLASS Training
 
Cloud storage or computing & its working
Cloud storage or computing & its workingCloud storage or computing & its working
Cloud storage or computing & its workingpiyush mishra
 
[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...
[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...
[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...CODE BLUE
 
Text cloud computing
Text cloud computingText cloud computing
Text cloud computingJeroen
 
Cloud Computing By #Manoj_Rockstar
Cloud Computing By #Manoj_RockstarCloud Computing By #Manoj_Rockstar
Cloud Computing By #Manoj_RockstarManoj Magatapalli
 
What Is Windows Azure
What Is Windows AzureWhat Is Windows Azure
What Is Windows AzureDominic Green
 
Cloud computing security - Insights
Cloud computing security - InsightsCloud computing security - Insights
Cloud computing security - Insightsgiorgiacaleffi
 
Cloud 101 for Nonprofits
Cloud 101 for NonprofitsCloud 101 for Nonprofits
Cloud 101 for NonprofitsTechSoup Canada
 
Ocra 2012
Ocra 2012Ocra 2012
Ocra 2012Margaret Mellinger
 
Technology update
Technology updateTechnology update
Technology updatejumus jumbuck
 
How Cloud Computing Works
How Cloud Computing WorksHow Cloud Computing Works
How Cloud Computing WorksJason Robinson
 
E2LOGY Cloud presentation
E2LOGY Cloud presentationE2LOGY Cloud presentation
E2LOGY Cloud presentationE2LOGY
 
Free lowcost may2012
Free lowcost may2012Free lowcost may2012
Free lowcost may2012Highway T
 
Economics of Cloud Computing (Jazoon'11)
Economics of Cloud Computing (Jazoon'11)Economics of Cloud Computing (Jazoon'11)
Economics of Cloud Computing (Jazoon'11)Netcetera
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingEdi Saputra
 

Mais conteúdo relacionado

Semelhante a Cloud Security: Tips and Myths

Introduction to cloud computing
Introduction to cloud computingIntroduction to cloud computing
Introduction to cloud computingDigital Shende
 
Adobe Hacked Again: What Does It Mean for You?
Adobe Hacked Again: What Does It Mean for You? Adobe Hacked Again: What Does It Mean for You?
Adobe Hacked Again: What Does It Mean for You? Lumension
 
Sept 2014 cloud security presentation
Sept 2014 cloud security presentationSept 2014 cloud security presentation
Sept 2014 cloud security presentationJoan Dembowski
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud ComputingJoel May
 
Cloud Computing: What it Means/Does/Costs and Why You Should Care
Cloud Computing: What it Means/Does/Costs and Why You Should CareCloud Computing: What it Means/Does/Costs and Why You Should Care
Cloud Computing: What it Means/Does/Costs and Why You Should CareDW Nelson
 
Cloud theory and Practical.pptx
Cloud theory and Practical.pptxCloud theory and Practical.pptx
Cloud theory and Practical.pptxrubben7
 
What is 'Cloud Computing'?
What is 'Cloud Computing'?What is 'Cloud Computing'?
What is 'Cloud Computing'?CLASS Training
 
Cloud storage or computing & its working
Cloud storage or computing & its workingCloud storage or computing & its working
Cloud storage or computing & its workingpiyush mishra
 
[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...
[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...
[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...CODE BLUE
 
Text cloud computing
Text cloud computingText cloud computing
Text cloud computingJeroen
 
Cloud Computing By #Manoj_Rockstar
Cloud Computing By #Manoj_RockstarCloud Computing By #Manoj_Rockstar
Cloud Computing By #Manoj_RockstarManoj Magatapalli
 
What Is Windows Azure
What Is Windows AzureWhat Is Windows Azure
What Is Windows AzureDominic Green
 
Cloud computing security - Insights
Cloud computing security - InsightsCloud computing security - Insights
Cloud computing security - Insightsgiorgiacaleffi
 
How Cloud Computing Works
How Cloud Computing WorksHow Cloud Computing Works
How Cloud Computing WorksJason Robinson
 
E2LOGY Cloud presentation
E2LOGY Cloud presentationE2LOGY Cloud presentation
E2LOGY Cloud presentationE2LOGY
 
Free lowcost may2012
Free lowcost may2012Free lowcost may2012
Free lowcost may2012Highway T
 
Economics of Cloud Computing (Jazoon'11)
Economics of Cloud Computing (Jazoon'11)Economics of Cloud Computing (Jazoon'11)
Economics of Cloud Computing (Jazoon'11)Netcetera
 

Semelhante a Cloud Security: Tips and Myths (20)

Introduction to cloud computing
Introduction to cloud computingIntroduction to cloud computing
Introduction to cloud computing
 
Adobe Hacked Again: What Does It Mean for You?
Adobe Hacked Again: What Does It Mean for You? Adobe Hacked Again: What Does It Mean for You?
Adobe Hacked Again: What Does It Mean for You?
 
Sept 2014 cloud security presentation
Sept 2014 cloud security presentationSept 2014 cloud security presentation
Sept 2014 cloud security presentation
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
Cloud Computing: What it Means/Does/Costs and Why You Should Care
Cloud Computing: What it Means/Does/Costs and Why You Should CareCloud Computing: What it Means/Does/Costs and Why You Should Care
Cloud Computing: What it Means/Does/Costs and Why You Should Care
 
Cloud theory and Practical.pptx
Cloud theory and Practical.pptxCloud theory and Practical.pptx
Cloud theory and Practical.pptx
 
What is 'Cloud Computing'?
What is 'Cloud Computing'?What is 'Cloud Computing'?
What is 'Cloud Computing'?
 
Cloud storage or computing & its working
Cloud storage or computing & its workingCloud storage or computing & its working
Cloud storage or computing & its working
 
[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...
[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...
[CB16] Electron - Build cross platform desktop XSS, it’s easier than you thin...
 
Text cloud computing
Text cloud computingText cloud computing
Text cloud computing
 
Cloud Computing By #Manoj_Rockstar
Cloud Computing By #Manoj_RockstarCloud Computing By #Manoj_Rockstar
Cloud Computing By #Manoj_Rockstar
 
What Is Windows Azure
What Is Windows AzureWhat Is Windows Azure
What Is Windows Azure
 
Cloud computing security - Insights
Cloud computing security - InsightsCloud computing security - Insights
Cloud computing security - Insights
 
Cloud 101 for Nonprofits
Cloud 101 for NonprofitsCloud 101 for Nonprofits
Cloud 101 for Nonprofits
 
Ocra 2012
Ocra 2012Ocra 2012
Ocra 2012
 
Technology update
Technology updateTechnology update
Technology update
 
How Cloud Computing Works
How Cloud Computing WorksHow Cloud Computing Works
How Cloud Computing Works
 
E2LOGY Cloud presentation
E2LOGY Cloud presentationE2LOGY Cloud presentation
E2LOGY Cloud presentation
 
Free lowcost may2012
Free lowcost may2012Free lowcost may2012
Free lowcost may2012
 
Economics of Cloud Computing (Jazoon'11)
Economics of Cloud Computing (Jazoon'11)Economics of Cloud Computing (Jazoon'11)
Economics of Cloud Computing (Jazoon'11)
 

Último

Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingEdi Saputra
 
Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...
Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...
Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...Principled Technologies
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?Igalia
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CVKhem
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAndrey Devyatkin
 
HTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesHTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesBoston Institute of Analytics
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProduct Anonymous
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsJoaquim Jorge
 

Último (20)

Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...
Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...
Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
HTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesHTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation Strategies
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 

Cloud Security: Tips and Myths

  • 2. Overview  Introduction  Format  Security in the Cloud  What is cloud?  Heartbleed Bug  Security issues (real and imagined)  Best Practices  Questions Join the Conversation: #CloudMasters Edwin Frondozo: @drgnmeme @Slingshotvoip Eugene Dong @Eugened @Procurify
  • 3. What is the Cloud?  Storing and accessing data and programs on the internet instead of your computer's hard drive  Google Drive, Apple iCloud, Samsung Chromebook, SaaS, VoIP, etc.  Benefits (some)  Accessibility  Real-time vs. versioning  Backup  Scalability and low-cost  Increased security  And more….
  • 4. Heartbleed Bug  Not the norm - loophole  How it worked:  Scrape data from server memory  500,000 websites  Top 100 websites and their “patch” status: http://www.cnet.com/how-to/which-sites-have- patched-the-heartbleed-bug/  Don’t change your password until they have fixed the bug  Start with banking, email  Protect yourself  Don’t use public Wi-Fi  Change your passwords  Clear browsing history and passwords  Check your bank statement
  • 5. Is the Cloud Secure? Classic Concerns:  Control over administration  Geographic control of information  Shared server space, “noisy neighbours”  Control over virtualization  Shared infrastructure and settings  Collateral damage  Blacklist of an IP in a public cloud  Data export lock-in
  • 6. Best Practices 1  Keep up with security news!  Keep your internal security up to date  This can often be weaker than your cloud’s security measures  Are your employees on the cloud?  Rise of BYOD culture  Have your IT team make a list of what is ok for them to use  Baby steps in cloud migration
  • 7. Best Practices 2  Keep software testing and sensitive data off the cloud  Investigate your cloud providers  Back up your data  Use a smart password  Not “Password” or “1234”  Letters, numbers, special characters  Disconnect chrome extension  Log out when you shut down your systems