Anton ChuvakinHow exciting is that? You combine 3 non-specific words – cloud, security, monitoring – and you get … what exactly? Let’s find out!
This quarter my research focuses on cloud security monitoring and cloud logging. I will try to define the subject(s) and then provide analysis and recommendations for architecting security monitoring of public cloud assets deployed in IaaS, PaaS and even SaaS environments (the word “luck” will likely be used in that last section a lot).
Here’s where I want to take the discussion: if you have IT assets deployed on a public cloud provider network today, and you want to monitor them by using log data, where would you rather send that log data? Your broad choices are (unless you have an MSSP contract, which will change the situation a bit):
- Back to your SIEM tool deployed in your environment (if any): your cloud logs -> your environment
- To a dedicated SaaS log management tool: your cloud logs -> another cloud environment.
When I asked a few people, whether they would conceptually lean towards Choice 1 or Choice 2, they picked Choice 3.
Huh? The Choice 3 is “we are still trying to figure it out, for now we don’t monitor those assets.” A few others mistook cloud for outsourcing and stated that “they trust their provider to deal with logs”…. That’s life in the cloud circa 2012 for you.
Future posts will touch upon such exciting subjects as “what logs you can hope to get in different cloud scenarios?”, “how to compensate for not having logs?” and a few other cloud-specific monitoring challenges that you’ll face in the near future.
Category: cloud logging security Tags: cloud security, security, security monitoring
5 responses so far ↓
1 Cloud Security Monitoring! « Tips On Security January 11, 2012 at 3:40 am
[...] the original post: Cloud Security Monitoring! Comments [...]
2 Cloud Security | Cloud Computing Blog | Cloud Computing Tips and Tricks | Everything you need to know January 12, 2012 at 3:09 am
[...] Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an “as-is” basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog. 2012 Gartner, Inc and/or its affiliates. All rights reserved. Read more on Cloud Security [...]
3 More On Security Monitoring of Public Cloud Assets January 14, 2012 at 12:35 am
[...] Coverage Areas: ← Cloud Security Monitoring! [...]
4 More On Security Monitoring of Public Cloud Assets January 14, 2012 at 11:13 pm
[...] Cloud Security Monitoring! [...]
5 Cloud Security Monitoring for IaaS, PaaS, SaaS January 21, 2012 at 12:11 am
[...] Cloud Security Monitoring! Share and Enjoy: [...]