Database security is a big term in the digital world. People are so much concerned about Database security. On the other hand cloud computing is the demand of the present business world. The question is can Cloud computing ensure internet security? In the subsequent paragraph, we will learn about the question.
Cloud computing is keeping data at other storage through online. It is managed by the cloud service provider. The user connects the storage through cloud OS. They pass the data with the internet browser. Sometimes cloud service provider offers special software application to synchronize data. As a result safety of data can be ensured.
There is some opportunities hunter to capture data you send. If the packet of data is leaked then the integrity of data will lose. Manipulation may occur at your data. Financial data is more in threads. If your competitors can retrieve
Newspaper thought of database security:
On 26 April 2016 BBC reported that can we trust our cloud service providers? In that article, they showed logic. Some logic may be accepted. Some may be rejected. It depends on cloud computing user. BBC reported that less than 10% of data are stored in cloud storage.
Other than the big cloud service providers like Google Cloud, Amazon Web Services and Microsoft Azure most of the service provider have complex service level agreement.
Your organization needs to manage hundreds of software application. You have to play with trillion gigabytes of data. To manage them it needs thousands of hardware devices. It also needs thousands of employee. As a result, the cost of data management will be high.
Business leaders are trying to reduce this cost. They found a new solution named cloud computing. Cloud computing provides three types of service. Software as a service, platform as a service and infrastructure as a service. Everything is available on the cloud. You can develop and software by using a cloud platform. There is a scope to use the software as a service from a cloud. Or you can use the total structure on the rental basis.
Now the problem arises with data security. Is it wise to give the control power to cloud service providers? They are located in a remote place with a different server. Is the employee of data server honest? Is there any audit trail to trace the movement of data? You have to know the disaster recovery plan. The main tension of cloud computing is the loss of data. The other tension is fraud, phishing of site and ethical dilemma.
How cloud service provider keep database safe?
Cloud encryption algorithm is the most popular form for database security. First of all, data is converted in crypto form. Cloud service provider also provides many other tools to keep data safe. AWS is the biggest public cloud service, provider. They have more than 1 million active clients. According to Mr. Massingham of AWS, they provide 1800 plus control mechanism for database security.
What Dropbox does?
Mark Crosbie is the international head of trust and security for Dropbox. According to him, Dropbox uses data encryption systems. Which is similar to AWS. They split each data file into chunks. It is called sharding. So if someone tries to steal the data he will get a random block.
What Rival Box Do?
Aaron Levie is the chief executive of cloud rival Box. He told, Instead of sending the files, Rival Box sends a link to the file. As a result, people can preview the content without really downloading the data. Therefore the software was designed to deliver a more secure process of sharing.
So database actually secure on a cloud?
Nobody can answer the question accurately. It depends on the capacity of your cloud service provider. Also, it depends on your IT staffs. Amichai Shulman is chief technology officer of cybersecurity firm, Imperva. She thinks major data breaches taken place because of an internal employee. Probably Sony to Ashley Madison, TalkTalk to Target is the best example of the last 5 years.
Therefore, there is always an inherent threat that administrative personnel of the cloud service provider. Hence it is a matter of thought. For the reason that major cloud providers give customers the option to handle their own encryption keys. As a result no-one inside the cloud service provider could get access even if they desired to.
Similarly, some corporations are now implementing a “hybrid” approach – keeping their data in a private cloud. Also other data and applications in the public cloud.
If the cloud ensures database security then why everyone is not joining in this platform?
First of all, this is a Good point. Probably 10% organization joined the cloud platform. Because of risk factor financial institutions is reluctant to implement cloud due to there may be holes in the model. But even this reasonably thoughtful sector is slowly beginning to trust it. Now, much financial organization thinking to use a cloud server. Consequently, this flow reduced having own data center.
Where is the cloud located?
The major public cloud service providers offer a number of data centers. Likewise, AWS covers 12 regions globally. Hence they offer storing multiple copies of customer data. So if one center is destroyed in a natural disaster, another server is still safe.
Another concern around data privacy. While in Europe following the withdrawing of the Safe Harbour data sharing agreement. In contrast the Edward Snowden leaks. Therefore it means that providers are increasingly offering the option to host data in customers’ own regions.
Data centers can be any location in the world. Even more, firms often want to kept data center closer to home. Almost this choice comes from the financial sector and healthcare service.
How to choose a good cloud service provider?
First of all, this is a vague question. Furthermore, every demand is special. So some cloud service provider offers special service. Salesforce offers sales and customer data. Similarly Workday for finance and human resources. Box offers the file sharing storage. As a result, you can easily find out your partner.
Service level agreement is very important. People also search for reputation. The relationship and behavior is another factor. Above all costing really matters. Finally, last but not least, you cannot compromise database security.