SlideShare uma empresa Scribd logo

Seguridad en la Nube

Mundo Contact
Mundo Contact

Seguridad en la Nube Javier Liendo, Consultor de Seguridad para Cisco México / Grupo Dice Congreso Mundo Contact Mexico 2012

TecnologiaNegócios
1 de 15
Baixar para ler offline
Javier Liendo, CSE Security jaliendo@cisco.com Mexico City May 15th, 2012 C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. C97-694080-00 © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1
• Cloud Security – What’s changed? • Cloud Threats – What are new threats specific to cloud? • Cisco Cloud Security C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
“Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or service provider interaction.” C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
1. Cloud Software as a Service (SaaS) Use provider’s applications over a network 2. Cloud Platform as a Service (PaaS) Deploy customer-created applications to a cloud 3. Cloud Infrastructure as a Service (IaaS) Rent processing, storage, network capacity, and other fundamental computing resources C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
Private cloud Enterprise owned or leased, may reside on or off premise Community cloud Shared infrastructure for specific community with common concerns/goals Public cloud Sold to the public, mega-scale infrastructure Hybrid cloud Composition of two or more clouds C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
Hosted/Private Private Cloud Virtual Cloud Public Cloud Public Cloud (Iaas) (IaaS) (IaaS) (SaaS) Data Data Data Data App App App App VM VM VM VM Server Server Server Server Storage Storage Storage Storage Network Network Network Network “They” are in Security IT is in control Shared control control C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
Old New Protect the Data (and Application) Protect the Perimeter Protect the Hypervisor Place it in the right security VMs in motion need to move with zone ‘attached’ security policy Zones are static Zones are dynamic and on the move! Virtualization means machine to Machine to machine traffic machine traffic never leaves the host can be seen on ‘the wire’ Trust the ‘insider’ Pervasive Distrust Any shared resources need security Dedicated is secure scrutiny C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
Experience Agility Economics Security C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
Policy Corporate Border Applications and Data Corporate Office Branch Office Attackers Partners Customers C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
Policy Corporate Border Platform Infrastructure Applications as a Service as a Service X and Data Software as a Service as a Service Corporate Office Branch Office Home Office Airport Mobile Coffee User Attackers Partners Customers Shop C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
Policy Corporate Border Platform Infrastructure Applications as a Service as a Service X and Data Software as a Service as a Service Corporate Office Branch Office Home Office Airport Mobile Coffee User Attackers Partners Customers Shop C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
2 Public Cloud • Threat defense • Secure multitenancy • Secure communications VDC1 1 Cloud Customer Cisco® ScanSafe Cisco IronPort® VDC2 • Policy management Email Web Security • Access control • Threat defense vPC • DLP Internet IPsec/SSL Campus IPsec/SSL Cisco Security Intelligence Operations (SIO) Active Cisco Identity Directory Services Engine Cisco Cisco VXI Cisco Cisco AnyConnect™ UCS™ TrustSec® Cisco ASA Cisco 3 1000V VSG Private Cloud Cisco • Secure multitenancy ASA VMs • Separation of duties 5585-X • Data protection Virtualization Hypervisor C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
Related Secure Cloud Cloud Security Secure AS Security Infrastructure as a Service Cloud Access Services • Cisco ASA 5585; ASA • Cisco ScanSafe • Secure SaaS access • Secure Cloud SM; ASA1000V Web Security and Discovery Service Filtering • Cisco AnyConnect™ • Cisco Nexus® 1000V • Security PDI switch • CiscoIronPort® • Cisco TrustSec® Cloud, Managed, • IT-GRC Services • Cisco Virtual Security • Cisco Identity and Hybrid Email Services Engine Gateway Security • VPN • Cisco SIO C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
• Cloud Security – What’s changed? • Cloud Threats – What are new threats specific to cloud? • Cisco Cloud Security C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
Thank you. C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15

Recomendados

Cisco Cloud Briefing and Experiences for Cloud Slam 2011
Cisco Cloud Briefing and Experiences for Cloud Slam 2011Cisco Cloud Briefing and Experiences for Cloud Slam 2011
Cisco Cloud Briefing and Experiences for Cloud Slam 2011
Cisco Collaboration
 
Cisco tec rob soderbery - core enterprise networking
Cisco tec rob soderbery - core enterprise networkingCisco tec rob soderbery - core enterprise networking
Cisco tec rob soderbery - core enterprise networking
Cisco Public Relations
 
Cisco tec de beer, andersen, o'sullivan - video & collaboration
Cisco tec de beer, andersen, o'sullivan - video & collaborationCisco tec de beer, andersen, o'sullivan - video & collaboration
Cisco tec de beer, andersen, o'sullivan - video & collaboration
Cisco Public Relations
 
Inter op nyc_mahbubul alam_october 2012
Inter op nyc_mahbubul alam_october 2012Inter op nyc_mahbubul alam_october 2012
Inter op nyc_mahbubul alam_october 2012
Mahbubul Alam
 
Cisco tec chris young - security intelligence operations
Cisco tec chris young - security intelligence operationsCisco tec chris young - security intelligence operations
Cisco tec chris young - security intelligence operations
Cisco Public Relations
 
Presentation cisco service oriented infrastructure
Presentation cisco service oriented infrastructurePresentation cisco service oriented infrastructure
Presentation cisco service oriented infrastructure
xKinAnx
 
T1 05 emc forum track introductions manoj chugh final
T1 05 emc forum track introductions manoj chugh finalT1 05 emc forum track introductions manoj chugh final
T1 05 emc forum track introductions manoj chugh final
EMC Forum India
 
Cisco tec surya panditi - service provider
Cisco tec surya panditi - service providerCisco tec surya panditi - service provider
Cisco tec surya panditi - service provider
Cisco Public Relations
 

Recomendados

Cisco Cloud Briefing and Experiences for Cloud Slam 2011
Cisco Cloud Briefing and Experiences for Cloud Slam 2011Cisco Cloud Briefing and Experiences for Cloud Slam 2011
Cisco Cloud Briefing and Experiences for Cloud Slam 2011
Cisco Collaboration
 
Cisco tec rob soderbery - core enterprise networking
Cisco tec rob soderbery - core enterprise networkingCisco tec rob soderbery - core enterprise networking
Cisco tec rob soderbery - core enterprise networking
Cisco Public Relations
 
Cisco tec de beer, andersen, o'sullivan - video & collaboration
Cisco tec de beer, andersen, o'sullivan - video & collaborationCisco tec de beer, andersen, o'sullivan - video & collaboration
Cisco tec de beer, andersen, o'sullivan - video & collaboration
Cisco Public Relations
 
Inter op nyc_mahbubul alam_october 2012
Inter op nyc_mahbubul alam_october 2012Inter op nyc_mahbubul alam_october 2012
Inter op nyc_mahbubul alam_october 2012
Mahbubul Alam
 
Cisco tec chris young - security intelligence operations
Cisco tec chris young - security intelligence operationsCisco tec chris young - security intelligence operations
Cisco tec chris young - security intelligence operations
Cisco Public Relations
 
Presentation cisco service oriented infrastructure
Presentation cisco service oriented infrastructurePresentation cisco service oriented infrastructure
Presentation cisco service oriented infrastructure
xKinAnx
 
T1 05 emc forum track introductions manoj chugh final
T1 05 emc forum track introductions manoj chugh finalT1 05 emc forum track introductions manoj chugh final
T1 05 emc forum track introductions manoj chugh final
EMC Forum India
 
Cisco tec surya panditi - service provider
Cisco tec surya panditi - service providerCisco tec surya panditi - service provider
Cisco tec surya panditi - service provider
Cisco Public Relations
 
Intel Cloud Summit: Greg Brown McAfee
Intel Cloud Summit: Greg Brown McAfeeIntel Cloud Summit: Greg Brown McAfee
Intel Cloud Summit: Greg Brown McAfee
IntelAPAC
 
Managing your Cloud with Confidence
Managing your Cloud with Confidence Managing your Cloud with Confidence
Managing your Cloud with Confidence
CA Nimsoft
 
EMC Forum Track Introductions
EMC Forum Track IntroductionsEMC Forum Track Introductions
EMC Forum Track Introductions
EMC Forum India
 
From Physical to Virtual to Cloud
From Physical to Virtual to CloudFrom Physical to Virtual to Cloud
From Physical to Virtual to Cloud
Cisco Security
 
Topdanmark- Cisco
Topdanmark- CiscoTopdanmark- Cisco
Topdanmark- Cisco
Cisco Case Studies
 
Defending the Data Center: Managing Users from the Edge to the Application
Defending the Data Center: Managing Users from the Edge to the ApplicationDefending the Data Center: Managing Users from the Edge to the Application
Defending the Data Center: Managing Users from the Edge to the Application
Cisco Security
 
Cloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. RealityCloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. Reality
Internap
 
SunGard Cloud - Infrastructure as a Service - IaaS
SunGard Cloud - Infrastructure as a Service - IaaSSunGard Cloud - Infrastructure as a Service - IaaS
SunGard Cloud - Infrastructure as a Service - IaaS
SunGard Availability Services UK
 
Cisco connect montreal 2018 vision mondiale analyse locale
Cisco connect montreal 2018 vision mondiale analyse localeCisco connect montreal 2018 vision mondiale analyse locale
Cisco connect montreal 2018 vision mondiale analyse locale
Cisco Canada
 
Cccc net app_wallacefung
Cccc net app_wallacefungCccc net app_wallacefung
Cccc net app_wallacefung
Cloud Congress
 
Cisco connect montreal 2018 collaboration les services webex hybrides
Cisco connect montreal 2018 collaboration les services webex hybridesCisco connect montreal 2018 collaboration les services webex hybrides
Cisco connect montreal 2018 collaboration les services webex hybrides
Cisco Canada
 
Presentación Data Center Cablevisión Day 2010
Presentación Data Center Cablevisión Day 2010Presentación Data Center Cablevisión Day 2010
Presentación Data Center Cablevisión Day 2010
Logicalis Latam
 
"Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр...
"Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр... "Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр...
"Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр...
Cisco Russia
 
Webinar: eFolder Expert Series: Five Technologies from AppAssure to Boost You...
Webinar: eFolder Expert Series: Five Technologies from AppAssure to Boost You...Webinar: eFolder Expert Series: Five Technologies from AppAssure to Boost You...
Webinar: eFolder Expert Series: Five Technologies from AppAssure to Boost You...
Dropbox
 
ReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered serviceReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered service
Gen-i
 
SIOS Private Cloud
SIOS Private CloudSIOS Private Cloud
SIOS Private Cloud
Jim Kaskade
 
UNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de software
UNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de softwareUNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de software
UNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de software
Mundo Contact
 
The Wireless Enterprise. Networks for Business Mobility
The Wireless Enterprise. Networks for Business MobilityThe Wireless Enterprise. Networks for Business Mobility
The Wireless Enterprise. Networks for Business Mobility
Mundo Contact
 
Open Source, un CRM al alcance de las PyME
Open Source, un CRM al alcance de las PyMEOpen Source, un CRM al alcance de las PyME
Open Source, un CRM al alcance de las PyME
Mundo Contact
 
Telepresencia y Comunicaciones Unificadas: Mitos y Realidades
Telepresencia y Comunicaciones Unificadas: Mitos y RealidadesTelepresencia y Comunicaciones Unificadas: Mitos y Realidades
Telepresencia y Comunicaciones Unificadas: Mitos y Realidades
Mundo Contact
 
Comunicaciones Unificadas, Colaboración y Movilidad como Aplicaciones de un C...
Comunicaciones Unificadas, Colaboración y Movilidad como Aplicaciones de un C...Comunicaciones Unificadas, Colaboración y Movilidad como Aplicaciones de un C...
Comunicaciones Unificadas, Colaboración y Movilidad como Aplicaciones de un C...
Mundo Contact
 
La Revolución del Social Business
La Revolución del Social BusinessLa Revolución del Social Business
La Revolución del Social Business
Mundo Contact
 

Mais conteúdo relacionado

Mais procurados

Intel Cloud Summit: Greg Brown McAfee
Intel Cloud Summit: Greg Brown McAfeeIntel Cloud Summit: Greg Brown McAfee
Intel Cloud Summit: Greg Brown McAfee
IntelAPAC
 
EMC Forum Track Introductions
EMC Forum Track IntroductionsEMC Forum Track Introductions
EMC Forum Track Introductions
EMC Forum India
 
Presentación Data Center Cablevisión Day 2010
Presentación Data Center Cablevisión Day 2010Presentación Data Center Cablevisión Day 2010
Presentación Data Center Cablevisión Day 2010
Logicalis Latam
 
"Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр...
"Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр... "Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр...
"Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр...
Cisco Russia
 
ReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered serviceReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered service
Gen-i
 

Mais procurados (16)

Intel Cloud Summit: Greg Brown McAfee
Intel Cloud Summit: Greg Brown McAfeeIntel Cloud Summit: Greg Brown McAfee
Intel Cloud Summit: Greg Brown McAfee
 
Managing your Cloud with Confidence
Managing your Cloud with Confidence Managing your Cloud with Confidence
Managing your Cloud with Confidence
 
EMC Forum Track Introductions
EMC Forum Track IntroductionsEMC Forum Track Introductions
EMC Forum Track Introductions
 
From Physical to Virtual to Cloud
From Physical to Virtual to CloudFrom Physical to Virtual to Cloud
From Physical to Virtual to Cloud
 
Topdanmark- Cisco
Topdanmark- CiscoTopdanmark- Cisco
Topdanmark- Cisco
 
Defending the Data Center: Managing Users from the Edge to the Application
Defending the Data Center: Managing Users from the Edge to the ApplicationDefending the Data Center: Managing Users from the Edge to the Application
Defending the Data Center: Managing Users from the Edge to the Application
 
Cloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. RealityCloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. Reality
 
SunGard Cloud - Infrastructure as a Service - IaaS
SunGard Cloud - Infrastructure as a Service - IaaSSunGard Cloud - Infrastructure as a Service - IaaS
SunGard Cloud - Infrastructure as a Service - IaaS
 
Cisco connect montreal 2018 vision mondiale analyse locale
Cisco connect montreal 2018 vision mondiale analyse localeCisco connect montreal 2018 vision mondiale analyse locale
Cisco connect montreal 2018 vision mondiale analyse locale
 
Cccc net app_wallacefung
Cccc net app_wallacefungCccc net app_wallacefung
Cccc net app_wallacefung
 
Cisco connect montreal 2018 collaboration les services webex hybrides
Cisco connect montreal 2018 collaboration les services webex hybridesCisco connect montreal 2018 collaboration les services webex hybrides
Cisco connect montreal 2018 collaboration les services webex hybrides
 
Presentación Data Center Cablevisión Day 2010
Presentación Data Center Cablevisión Day 2010Presentación Data Center Cablevisión Day 2010
Presentación Data Center Cablevisión Day 2010
 
"Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр...
"Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр... "Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр...
"Преимущества облачных решений от Cisco" (Обзор облачной стратегии Cisco, Пр...
 
Webinar: eFolder Expert Series: Five Technologies from AppAssure to Boost You...
Webinar: eFolder Expert Series: Five Technologies from AppAssure to Boost You...Webinar: eFolder Expert Series: Five Technologies from AppAssure to Boost You...
Webinar: eFolder Expert Series: Five Technologies from AppAssure to Boost You...
 
ReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered serviceReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered service
 
SIOS Private Cloud
SIOS Private CloudSIOS Private Cloud
SIOS Private Cloud
 

Destaque

UNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de software
UNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de softwareUNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de software
UNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de software
Mundo Contact
 
The Wireless Enterprise. Networks for Business Mobility
The Wireless Enterprise. Networks for Business MobilityThe Wireless Enterprise. Networks for Business Mobility
The Wireless Enterprise. Networks for Business Mobility
Mundo Contact
 

Destaque (7)

UNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de software
UNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de softwareUNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de software
UNIVERGE 3C: Comunicaciones unificadas, colaboración y servicios de software
 
The Wireless Enterprise. Networks for Business Mobility
The Wireless Enterprise. Networks for Business MobilityThe Wireless Enterprise. Networks for Business Mobility
The Wireless Enterprise. Networks for Business Mobility
 
Open Source, un CRM al alcance de las PyME
Open Source, un CRM al alcance de las PyMEOpen Source, un CRM al alcance de las PyME
Open Source, un CRM al alcance de las PyME
 
Telepresencia y Comunicaciones Unificadas: Mitos y Realidades
Telepresencia y Comunicaciones Unificadas: Mitos y RealidadesTelepresencia y Comunicaciones Unificadas: Mitos y Realidades
Telepresencia y Comunicaciones Unificadas: Mitos y Realidades
 
Comunicaciones Unificadas, Colaboración y Movilidad como Aplicaciones de un C...
Comunicaciones Unificadas, Colaboración y Movilidad como Aplicaciones de un C...Comunicaciones Unificadas, Colaboración y Movilidad como Aplicaciones de un C...
Comunicaciones Unificadas, Colaboración y Movilidad como Aplicaciones de un C...
 
La Revolución del Social Business
La Revolución del Social BusinessLa Revolución del Social Business
La Revolución del Social Business
 
La Experiencia del Cliente: cumpliendo con la promesa de la marca
La Experiencia del Cliente: cumpliendo con la promesa de la marcaLa Experiencia del Cliente: cumpliendo con la promesa de la marca
La Experiencia del Cliente: cumpliendo con la promesa de la marca
 

Semelhante a Seguridad en la Nube

Cisco switching technical
Cisco switching technicalCisco switching technical
Cisco switching technical
ImranD1
 
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
HKISPA
 
The Ever Changing Cloud, CloudExpo 2012
The Ever Changing Cloud, CloudExpo 2012The Ever Changing Cloud, CloudExpo 2012
The Ever Changing Cloud, CloudExpo 2012
Lew Tucker
 
分会场八云及虚拟环境安全防护
分会场八云及虚拟环境安全防护分会场八云及虚拟环境安全防护
分会场八云及虚拟环境安全防护
ITband
 
Avaya sipwithinyourenterprise-090629022848-phpapp02
Avaya sipwithinyourenterprise-090629022848-phpapp02Avaya sipwithinyourenterprise-090629022848-phpapp02
Avaya sipwithinyourenterprise-090629022848-phpapp02
Newlink
 

Semelhante a Seguridad en la Nube (20)

Cisco switching technical
Cisco switching technicalCisco switching technical
Cisco switching technical
 
Cloud computing
Cloud computingCloud computing
Cloud computing
 
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
 
Government 2.1 - Let The Virtual Journey Begins, NOW: From Desktop To the Clo...
Government 2.1 - Let The Virtual Journey Begins, NOW: From Desktop To the Clo...Government 2.1 - Let The Virtual Journey Begins, NOW: From Desktop To the Clo...
Government 2.1 - Let The Virtual Journey Begins, NOW: From Desktop To the Clo...
 
The Ever Changing Cloud, CloudExpo 2012
The Ever Changing Cloud, CloudExpo 2012The Ever Changing Cloud, CloudExpo 2012
The Ever Changing Cloud, CloudExpo 2012
 
PCTY 2012, Cloud security (real life) v. Ulf Feger
PCTY 2012, Cloud security (real life) v. Ulf FegerPCTY 2012, Cloud security (real life) v. Ulf Feger
PCTY 2012, Cloud security (real life) v. Ulf Feger
 
Cloud Computing and VCE
Cloud Computing and VCECloud Computing and VCE
Cloud Computing and VCE
 
Tech editors conf tucker yen-jacoby revised final for may 24 2012
Tech editors conf tucker yen-jacoby revised final for may 24 2012Tech editors conf tucker yen-jacoby revised final for may 24 2012
Tech editors conf tucker yen-jacoby revised final for may 24 2012
 
OpenStack, SDN, and the Future of Software Defined Infrastructure
OpenStack, SDN, and the Future of Software Defined InfrastructureOpenStack, SDN, and the Future of Software Defined Infrastructure
OpenStack, SDN, and the Future of Software Defined Infrastructure
 
分会场八云及虚拟环境安全防护
分会场八云及虚拟环境安全防护分会场八云及虚拟环境安全防护
分会场八云及虚拟环境安全防护
 
Geospatial Community Cloud Vision
Geospatial Community Cloud VisionGeospatial Community Cloud Vision
Geospatial Community Cloud Vision
 
Cloud Xero #1 - Intro to Cloud Computing
Cloud Xero #1 - Intro to Cloud ComputingCloud Xero #1 - Intro to Cloud Computing
Cloud Xero #1 - Intro to Cloud Computing
 
Cisco open network environment
Cisco open network environmentCisco open network environment
Cisco open network environment
 
Cloud Computing at Cisco
Cloud Computing at CiscoCloud Computing at Cisco
Cloud Computing at Cisco
 
Layer 7 & Burton Group: New Cloud Security Model Requirements
Layer 7 & Burton Group: New Cloud Security Model RequirementsLayer 7 & Burton Group: New Cloud Security Model Requirements
Layer 7 & Burton Group: New Cloud Security Model Requirements
 
Cisco at v mworld 2015 vmworld-deck-2015-final
Cisco at v mworld 2015 vmworld-deck-2015-finalCisco at v mworld 2015 vmworld-deck-2015-final
Cisco at v mworld 2015 vmworld-deck-2015-final
 
EMC's IT's Cloud Transformation, Thomas Becker, EMC
EMC's IT's Cloud Transformation, Thomas Becker, EMCEMC's IT's Cloud Transformation, Thomas Becker, EMC
EMC's IT's Cloud Transformation, Thomas Becker, EMC
 
Data Center Security Now and into the Future
Data Center Security Now and into the FutureData Center Security Now and into the Future
Data Center Security Now and into the Future
 
The Changing Data Center Landscape
The Changing Data Center LandscapeThe Changing Data Center Landscape
The Changing Data Center Landscape
 
Avaya sipwithinyourenterprise-090629022848-phpapp02
Avaya sipwithinyourenterprise-090629022848-phpapp02Avaya sipwithinyourenterprise-090629022848-phpapp02
Avaya sipwithinyourenterprise-090629022848-phpapp02
 

Mais de Mundo Contact

Mais de Mundo Contact (20)

Revista Mundo Contact Julio 2016
Revista Mundo Contact Julio 2016Revista Mundo Contact Julio 2016
Revista Mundo Contact Julio 2016
 
Revista Mundo Contact Junio 2016
Revista Mundo Contact Junio 2016Revista Mundo Contact Junio 2016
Revista Mundo Contact Junio 2016
 
Revista Mundo Contact Mayo 2016
Revista Mundo Contact Mayo 2016Revista Mundo Contact Mayo 2016
Revista Mundo Contact Mayo 2016
 
Revista Mundo Contact Abril 2016
Revista Mundo Contact Abril 2016Revista Mundo Contact Abril 2016
Revista Mundo Contact Abril 2016
 
Revista Mundo Contact Marzo 2016
Revista Mundo Contact Marzo 2016Revista Mundo Contact Marzo 2016
Revista Mundo Contact Marzo 2016
 
Revista Mundo Contact Febrero 2016
Revista Mundo Contact Febrero 2016Revista Mundo Contact Febrero 2016
Revista Mundo Contact Febrero 2016
 
Revista Mundo Contact Enero 2016
Revista Mundo Contact Enero 2016Revista Mundo Contact Enero 2016
Revista Mundo Contact Enero 2016
 
Revista Mundo Contact Diciembre 2015
Revista Mundo Contact Diciembre 2015Revista Mundo Contact Diciembre 2015
Revista Mundo Contact Diciembre 2015
 
Revista Mundo Contact Noviembre 2015
Revista Mundo Contact Noviembre 2015Revista Mundo Contact Noviembre 2015
Revista Mundo Contact Noviembre 2015
 
Revista Mundo Contact Octubre 2015
Revista Mundo Contact Octubre 2015Revista Mundo Contact Octubre 2015
Revista Mundo Contact Octubre 2015
 
Revista Mundo Contact Septiembre 2015
Revista Mundo Contact Septiembre 2015Revista Mundo Contact Septiembre 2015
Revista Mundo Contact Septiembre 2015
 
Revista Mundo Contact Agosto 2015
Revista Mundo Contact Agosto 2015Revista Mundo Contact Agosto 2015
Revista Mundo Contact Agosto 2015
 
Revista Mundo Contact Julio 2015
Revista Mundo Contact Julio 2015Revista Mundo Contact Julio 2015
Revista Mundo Contact Julio 2015
 
Revista Mundo Contact Junio 2015
Revista Mundo Contact Junio 2015Revista Mundo Contact Junio 2015
Revista Mundo Contact Junio 2015
 
Revista Mundo Contact Mayo 2015
Revista Mundo Contact Mayo 2015Revista Mundo Contact Mayo 2015
Revista Mundo Contact Mayo 2015
 
Revista Mundo Contact Abril 2015
Revista Mundo Contact Abril 2015Revista Mundo Contact Abril 2015
Revista Mundo Contact Abril 2015
 
Revista Mundo Contact Marzo 2015
Revista Mundo Contact Marzo 2015Revista Mundo Contact Marzo 2015
Revista Mundo Contact Marzo 2015
 
Revista Mundo Contact Febrero 2015
Revista Mundo Contact Febrero 2015Revista Mundo Contact Febrero 2015
Revista Mundo Contact Febrero 2015
 
Revista Mundo Contact Enero 2015
Revista Mundo Contact Enero 2015Revista Mundo Contact Enero 2015
Revista Mundo Contact Enero 2015
 
Revista Mundo Contact Diciembre 2014
Revista Mundo Contact Diciembre 2014Revista Mundo Contact Diciembre 2014
Revista Mundo Contact Diciembre 2014
 

Último

Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptxUnpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
David Michel
 
Buy Epson EcoTank L3210 Colour Printer Online.pdf
Buy Epson EcoTank L3210 Colour Printer Online.pdfBuy Epson EcoTank L3210 Colour Printer Online.pdf
Buy Epson EcoTank L3210 Colour Printer Online.pdf
EasyPrinterHelp
 
ECS 2024 Teams Premium - Pretty Secure
ECS 2024 Teams Premium - Pretty SecureECS 2024 Teams Premium - Pretty Secure
ECS 2024 Teams Premium - Pretty Secure
Femke de Vroome
 
Connecting the Dots in Product Design at KAYAK
Connecting the Dots in Product Design at KAYAKConnecting the Dots in Product Design at KAYAK
Connecting the Dots in Product Design at KAYAK
UXDXConf
 
A Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System StrategyA Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System Strategy
UXDXConf
 
Syngulon - Selection technology May 2024.pdf
Syngulon - Selection technology May 2024.pdfSyngulon - Selection technology May 2024.pdf
Syngulon - Selection technology May 2024.pdf
Syngulon
 
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
CzechDreamin
 

Último (20)

The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?
 
IoT Analytics Company Presentation May 2024
IoT Analytics Company Presentation May 2024IoT Analytics Company Presentation May 2024
IoT Analytics Company Presentation May 2024
 
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptxUnpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
 
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
 
Buy Epson EcoTank L3210 Colour Printer Online.pdf
Buy Epson EcoTank L3210 Colour Printer Online.pdfBuy Epson EcoTank L3210 Colour Printer Online.pdf
Buy Epson EcoTank L3210 Colour Printer Online.pdf
 
Speed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in MinutesSpeed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in Minutes
 
ECS 2024 Teams Premium - Pretty Secure
ECS 2024 Teams Premium - Pretty SecureECS 2024 Teams Premium - Pretty Secure
ECS 2024 Teams Premium - Pretty Secure
 
Linux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdf
Linux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdfLinux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdf
Linux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdf
 
UiPath Test Automation using UiPath Test Suite series, part 1
UiPath Test Automation using UiPath Test Suite series, part 1UiPath Test Automation using UiPath Test Suite series, part 1
UiPath Test Automation using UiPath Test Suite series, part 1
 
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptxIOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
 
Connecting the Dots in Product Design at KAYAK
Connecting the Dots in Product Design at KAYAKConnecting the Dots in Product Design at KAYAK
Connecting the Dots in Product Design at KAYAK
 
What's New in Teams Calling, Meetings and Devices April 2024
What's New in Teams Calling, Meetings and Devices April 2024What's New in Teams Calling, Meetings and Devices April 2024
What's New in Teams Calling, Meetings and Devices April 2024
 
A Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System StrategyA Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System Strategy
 
Where to Learn More About FDO _ Richard at FIDO Alliance.pdf
Where to Learn More About FDO _ Richard at FIDO Alliance.pdfWhere to Learn More About FDO _ Richard at FIDO Alliance.pdf
Where to Learn More About FDO _ Richard at FIDO Alliance.pdf
 
Measures in SQL (a talk at SF Distributed Systems meetup, 2024-05-22)
Measures in SQL (a talk at SF Distributed Systems meetup, 2024-05-22)Measures in SQL (a talk at SF Distributed Systems meetup, 2024-05-22)
Measures in SQL (a talk at SF Distributed Systems meetup, 2024-05-22)
 
PLAI - Acceleration Program for Generative A.I. Startups
PLAI - Acceleration Program for Generative A.I. StartupsPLAI - Acceleration Program for Generative A.I. Startups
PLAI - Acceleration Program for Generative A.I. Startups
 
Syngulon - Selection technology May 2024.pdf
Syngulon - Selection technology May 2024.pdfSyngulon - Selection technology May 2024.pdf
Syngulon - Selection technology May 2024.pdf
 
Demystifying gRPC in .Net by John Staveley
Demystifying gRPC in .Net by John StaveleyDemystifying gRPC in .Net by John Staveley
Demystifying gRPC in .Net by John Staveley
 
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdfSimplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
 
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
 

Seguridad en la Nube

  • 1. Javier Liendo, CSE Security jaliendo@cisco.com Mexico City May 15th, 2012 C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. C97-694080-00 © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1
  • 2. • Cloud Security – What’s changed? • Cloud Threats – What are new threats specific to cloud? • Cisco Cloud Security C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
  • 3. “Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or service provider interaction.” C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
  • 4. 1. Cloud Software as a Service (SaaS) Use provider’s applications over a network 2. Cloud Platform as a Service (PaaS) Deploy customer-created applications to a cloud 3. Cloud Infrastructure as a Service (IaaS) Rent processing, storage, network capacity, and other fundamental computing resources C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
  • 5. Private cloud Enterprise owned or leased, may reside on or off premise Community cloud Shared infrastructure for specific community with common concerns/goals Public cloud Sold to the public, mega-scale infrastructure Hybrid cloud Composition of two or more clouds C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
  • 6. Hosted/Private Private Cloud Virtual Cloud Public Cloud Public Cloud (Iaas) (IaaS) (IaaS) (SaaS) Data Data Data Data App App App App VM VM VM VM Server Server Server Server Storage Storage Storage Storage Network Network Network Network “They” are in Security IT is in control Shared control control C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
  • 7. Old New Protect the Data (and Application) Protect the Perimeter Protect the Hypervisor Place it in the right security VMs in motion need to move with zone ‘attached’ security policy Zones are static Zones are dynamic and on the move! Virtualization means machine to Machine to machine traffic machine traffic never leaves the host can be seen on ‘the wire’ Trust the ‘insider’ Pervasive Distrust Any shared resources need security Dedicated is secure scrutiny C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
  • 8. Experience Agility Economics Security C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
  • 9. Policy Corporate Border Applications and Data Corporate Office Branch Office Attackers Partners Customers C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
  • 10. Policy Corporate Border Platform Infrastructure Applications as a Service as a Service X and Data Software as a Service as a Service Corporate Office Branch Office Home Office Airport Mobile Coffee User Attackers Partners Customers Shop C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
  • 11. Policy Corporate Border Platform Infrastructure Applications as a Service as a Service X and Data Software as a Service as a Service Corporate Office Branch Office Home Office Airport Mobile Coffee User Attackers Partners Customers Shop C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
  • 12. 2 Public Cloud • Threat defense • Secure multitenancy • Secure communications VDC1 1 Cloud Customer Cisco® ScanSafe Cisco IronPort® VDC2 • Policy management Email Web Security • Access control • Threat defense vPC • DLP Internet IPsec/SSL Campus IPsec/SSL Cisco Security Intelligence Operations (SIO) Active Cisco Identity Directory Services Engine Cisco Cisco VXI Cisco Cisco AnyConnect™ UCS™ TrustSec® Cisco ASA Cisco 3 1000V VSG Private Cloud Cisco • Secure multitenancy ASA VMs • Separation of duties 5585-X • Data protection Virtualization Hypervisor C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
  • 13. Related Secure Cloud Cloud Security Secure AS Security Infrastructure as a Service Cloud Access Services • Cisco ASA 5585; ASA • Cisco ScanSafe • Secure SaaS access • Secure Cloud SM; ASA1000V Web Security and Discovery Service Filtering • Cisco AnyConnect™ • Cisco Nexus® 1000V • Security PDI switch • CiscoIronPort® • Cisco TrustSec® Cloud, Managed, • IT-GRC Services • Cisco Virtual Security • Cisco Identity and Hybrid Email Services Engine Gateway Security • VPN • Cisco SIO C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
  • 14. • Cloud Security – What’s changed? • Cloud Threats – What are new threats specific to cloud? • Cisco Cloud Security C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
  • 15. Thank you. C97-694080-00 © 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15