Intel Experience with Cloud Security
Much of the information in this document comes from our experience working with cloud providers, virtualization and security solution vendors, OEMs, and large enterprise customers— as well as the experience of our own Intel IT building and deploying cloud technology. Intel IT has embarked on a radical five-year redesign of the Intel information security architecture. This redesign moves us away from a traditional binary trust model to a multitiered trust model with a particular emphasis on data and people as the new perimeter. This new architecture is designed to support key initiatives such as cloud computing as well as IT consumerization. Our Intel Cloud Builders1 program continues to yield in-depth guidance that you can use, including reference architectures, education, and a forum for discussion of technical issues. In addition, Intel’s strategic partnership with McAfee2 provides the foundation for a holistic security and compliance management platform to ensure overall integrity of the cloud infrastructure.
Three Major Trends That Impact Cloud Security
To manage cloud security in today’s world, you need a solution that helps you address threats to enterprise data and infrastructure, including the major trends you are up against. Changing attackers and threats: Threats are no longer the purview of isolated hackers looking for personal fame. More and more, organized crime is driving well-resourced, sophisticated, targeted attacks for financial gain. Evolving architecture technologies: With the growth of virtualization, perimeters and their controls within the data center are in flux, and data is no longer easily constrained or physically isolated and protected. Dynamic and challenging regulatory environment: Organizations—and their IT departments—face ongoing burdens of legal and regulatory compliance with increasingly prescriptive demands and the high penalties for noncompliance or breaches. Examples of regulations include Sarbanes-Oxley (SOX), Payment Card Industry (PCI), and the Health Insurance Portability and Accountability Act (HIPAA).
1 Intel Cloud Builders is a cross-industry initiative to help enterprises, telecommunications companies, and service providers build, enhance, and operate secure cloud infrastructures. 2 McAfee is a wholly owned subsidiary of Intel.
4
Intel IT Center Planning Guide | Cloud Security