PDF Document Download
Nemertes Research - Securing the Physical, Virtual, Cloud Continuum
You must be a logged in to view this document.
A key concern is trust. Moving to a cloud provider shifts the burden of trust onto the provider - something that few providers are able to handle today. To overcome this concern, responsibility for security and compliance needs to stay with the customer. This requires an overhaul of security practices - the same practices we've been using for 15 years. We need new security and compliance controls that span the physical, virtual, cloud continuum (not everything will be virtual so security must continue to protect physical assets). We also need security controls that are location-aware and dynamically enforce policy regardless of workload location. This requires an adaptive perimeter defense and restoration of depth for defense in depth.