Ever since the early days of cloud computing, the issue of security has been on the minds of anyone looking to adopt the technology. Amazon Web Services, the largest cloud provider in the world, said on its blog that it has been making a more dedicated push toward security innovation. The AWS Security and Compliance Center was created, as well as features such as client-side encryption, key rotation and multi-factor authentication, as well as others that can keep AWS subscribers safe.
The latest cloud security tool being released by the company, called AWS CloudHSM, aims to go above and beyond the aforementioned protections. With CloudHSM in place, customers can personally manage keys without having to sacrifice how their apps perform in the cloud.
"HSM is short for Hardware Security Module," the blog said. "It is a piece of hardware – a dedicated appliance that provides secure key storage and a set of cryptographic operations within a tamper-resistant enclosure. You can store your keys within an HSM and use them to encrypt and decrypt data while keeping them safe and sound and under your full control. You are the only one with access to the keys stored in an HSM."
Benefits of this service, according to AWS, include:
- The ability to retain full control over keys and operations performed by the HSMs the company creates
- Protection of keys through a "tamper-resistant" HSM
- Each CloudHSM has an IP address from the Amazon Virtual Private Network to be more safe with any information going into the cloud
Cloud security improving, still needs more
While this is a significant announcement from one of the biggest cloud computing companies in the world, CRN.com wrote up a report by CA Technologies and the Ponemon institute which found cloud security has improved in the past few years, but there are still formidable challenges that remain.
"In general we conclude that there is evidence of improvement from a security point of view, both in terms of Software-as-a-Service and in terms of Infrastructure-as-a-Service," said Dr. Larry Ponemon, founder of the Ponemon Institute. "The main issue to drive cloud is cost-efficiency, which continues to reign supreme, but we see that a lot of organizations are starting to think about and implement better security measures. It's a small improvement overall, but an improvement nonetheless."
Cloud Security News from SimplySecurity.com by Trend Micro.