10 Security Reasons Why the Enterprise Still Fears the Cloud

 
 
By Chris Preimesberger  |  Posted 2016-05-19
 
 
 
 
 
 
 
 
 
  • Previous
    1 - 10 Security Reasons Why the Enterprise Still Fears the Cloud
    Next

    10 Security Reasons Why the Enterprise Still Fears the Cloud

    Despite advantages in cost, scalability and flexibility, enterprise companies still are dubious about using cloud services. Here are 10 reasons why.
  • Previous
    2 - Safety of Data Storage
    Next

    Safety of Data Storage

    The single biggest concern indicated by participants is "safety of the data" (40 percent of respondents). This may indicate a certain level of fear, uncertainty and doubt (FUD), since it is generally accepted that cloud implementations can be safer than on-premises solutions.
  • Previous
    3 - Your DBaaS Provider Can Access Your Data
    Next

    Your DBaaS Provider Can Access Your Data

    An obvious side effect of hosting your data in the cloud is that you cannot control who has physical or logical access to the servers on which your data is stored and processed. About 35 percent of survey respondents identify the idea of a DBaaS provider having access to corporate information as a security deterrent to DBaaS implementations.
  • Previous
    4 - Physical Location of the Production Data and Backup Data
    Next

    Physical Location of the Production Data and Backup Data

    When data is stored in the cloud, the location of the data becomes a big question. Cloud providers maintain physical data centers in multiple geographical locations for reasons of performance and redundancy. This can introduce problems relating to regulatory compliance and internal company policies. About one-third of respondents identified this as a hindrance to moving their databases online.
  • Previous
    5 - External Users Can Access Database
    Next

    External Users Can Access Database

    Nearly one-third of survey respondents (31.4 percent) identified external parties having access to their database as a reason to keep their data on-premises. While an organization's database in the cloud makes it theoretically possible for people anywhere in the world to gain access, the same is true of on-premises solutions.
  • Previous
    6 - DBaaS Regulatory Compliance
    Next

    DBaaS Regulatory Compliance

    Survey respondents believe regulatory compliance in the DBaaS environment is more complex than for traditional, on-premises databases, with 29.4 percent identifying this as a hurdle to DBaaS adoption. However, tools for addressing these kinds of issues in the cloud are available, though not widely adopted yet.
  • Previous
    7 - DDoS and Performance Attacks on the Database
    Next

    DDoS and Performance Attacks on the Database

    Driven perhaps by media coverage of distributed denial-of-service (DDoS) exploits, 23.5 percent of survey respondents identified performance attacks that cause a database to become slow or unresponsive as a key hindrance to DBaaS adoption. Ironically, this fear may be entirely unfounded. Companies including Google, Microsoft and Amazon are best-equipped to fend off such types of attacks due to their ability to scale their solutions.
  • Previous
    8 - Hidden Sensitive Data
    Next

    Hidden Sensitive Data

    One of the biggest challenges facing IT security teams in large organizations is discovering all the sensitive and regulated data within the organization, such as personally identifiable information (PII). This is true of hosted and on-premise solutions, but 21.6 percent of respondents identified this as a challenge for DBaaS operations to overcome.
  • Previous
    9 - SQL Injection Attacks
    Next

    SQL Injection Attacks

    SQL injection attacks remain the most prevalent database breach method in use today, and 17.6 percent of respondents identified this type of attack as a reason to stall DBaaS adoption. In an SQL injection attack, malicious SQL statements intended for execution by a database are inserted into an entry field on a Website. One possible result is that the server will expose data from the database that it should never return.
  • Previous
    10 - Data Theft by Authorized Users
    Next

    Data Theft by Authorized Users

    Seventeen percent of survey respondents said that data theft by authorized users is a reason to stall DBaaS installations. This concern should be recognized in both on-premises and cloud databases. DBAs, software developers, quality assurance personnel and others (whether employees or external partners) frequently require extensive access to databases to perform their roles.
  • Previous
    11 - Neighbor Tenants Can Access Your Data
    Next

    Neighbor Tenants Can Access Your Data

    Sixteen percent of survey respondents believe that a neighbor tenant gaining access to their database is a key reason to stall DBaaS adoption. There have been publicized instances in which cloud-hosted applications and databases using resources that are shared by multiple customers, or tenants, have inadvertently or maliciously been accessed. That said, most recognizable and reputable providers of DBaaS have adequately eliminated this concern.
 

Cloud applications and services today are integral parts of IT systems, as more enterprises accept them as a simply another part of their infrastructure. Whether it's a simple Salesforce usage model or a more complicated big data analytics deployment, the cloud has taught IT managers and administrators to trust it over the course of several years. But it has been a long road for cloud adoption. Trust wasn't there; in 2006, at the start of the cloud services era, security concerns were the No. 1 barrier for enterprises examining the cloud for such deployments. Today, security remains the top worry when it comes to signing on to a cloud service, albeit to a much lesser extent. HexaTier, a security and compliance software provider for cloud-hosted databases formerly known as GreenSQL, conducted a survey recently with about 600 IT leaders to identify the top security concerns still preventing enterprise organizations from moving their sensitive information to databases in the cloud. This eWEEK slide show reveals the top 10 results of its "Database as a Service (DBaaS) Security Research 2015" report.

 
 
 
 
 
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters























 
 
 
 
 
 
 
 
 
Rocket Fuel