Q3:
How does your security offering help in either establishing or enforcing trust in the cloud?
Carpathia offers a range of information assurance and compliance services that enable the base controls in the cloud to be extended to meet compliance requirements. The key to trust is transparency, both in terms of the design of the platform and its operation. The combination of our core cloud security, managed services, and full transparency helps support a trust-based model in our cloud.
Cisco TrustSec* architecture helps to secure customer networks by building and enforcing identity-based access policies for users and devices while protecting critical data throughout the network. In this way, Cisco TrustSec architecture helps establish trust in the cloud by: • Identifying users and providing differentiated access in a dynamic, borderless environment • Enforcing compliance for an expanding array of consumer and network-capable devices • Enforcing access policy for users and devices located anywhere in the cloud • Establishing, monitoring, and enforcing consistent global access policies
Citrix XenServer, along with a fully OpenStack* cloud platform (Project Olympus), provides a multitenant trust framework for building trusted clouds. NetScaler* Cloud Gateway extends trust services from the cloud user through to hosted and third-party SaaS offerings for authentication, authorization, and provisioning management. NetScaler Cloud Bridge connects data center and public clouds utilizing an encrypted trust fabric. And NetScaler Application Firewall enforces the trust between cloud users and cloud services.
The most important element of Expedient’s security offering that establishes trust in the cloud is Expedient’s openness to audit and accountability. Expedient believes that simply providing a SAS 70 or like document is not enough to satisfy auditing needs; the cloud provider must be open and able to satisfy audit requirements as if it were an extension of an organization’s IT group. In short, Expedient allows for customers to audit their environments and makes its personnel, policies, and practices available for audit, which helps build trust in the cloud.
HyTrust can ensure that certain virtual workloads are only permitted to boot up on specific hosts or specific clusters, which is critical for compliance with the Payment Care Industry Data Security Standards (PCI-DSS). Through our partnership with Intel, HyTrust can verify the integrity of the physical hardware of the host to ensure that the underlying platform is fully trusted. HyTrust Appliance offers flexibility and control through its unique ability to label virtual objects and then apply policies to those labels.
15 Intel IT Center Vendor Round Table | Cloud Security