IaaS offerings are built on highly virtualized server infrastructures, creating unique security challenges. VMs are highly dynamic, and can be moved, replicated or suspended by a service provider typically without the knowledge of the data owner. As cloud adoption grows, organizations struggle to ensure the privacy of sensitive or regulated data while it is in flight to the cloud, as well as at rest.
In its latest release, HighCloud has added key functionality to its existing encryption and key management software that allow organizations to easily define a secure hybrid cloud. Administrators now have the ability to migrate devices between virtual machines, regardless of whether those VMs are in a private cloud, or in a public cloud like Amazon AWS or S3. This allows encryption to be applied to VM data before it ever leaves a company’s perimeter for the cloud, ensuring protection of data in transition and at rest.
“As cloud service providers become a target for data access, both to thieves and the U.S. government, organizations must take further steps to secure their data in the cloud,” said Steve Pate, co-founder and chief technology officer of HighCloud Security. “At HighCloud, our goal is to give organizations an easy, powerful way to lock down their data throughout its lifecycle, and as they transition from private, to hybrid, to public clouds.”
Use cases include:
Secure disaster recovery: A company can create mirrored drives in the cloud, and the encryption will travel with the drive. In the event that the primary drive is inaccessible, IT can route access to the cloud-based drive. HighCloud Key Management ensures the correct keys are delivered automatically when accessed by an authorized application.
Secure VM backup: Organizations that want to leverage Amazon S3 storage can create VMs in their datacenter, using HighCloud to encrypt the data in those VMs before it is uploaded to S3 buckets. Data can easily be restored to existing VMs, or to new VMs, either on premise or in Amazon Web Services, as long as they are authenticated by HighCloud’s Key and Policy Server.
Secure shared storage: Organizations that run clustered servers to ensure high-availability for mission critical applications can leverage HighCloud to encrypt the data in shared networked storage environments like Windows Failover Cluster. HighCloud Key and Policy Server handles failover and fail-back, ensuring encryption keys are available as needed.