Key management in cloud computing presents a brand new, unique, and distinct set of challenges which are in many cases disparate from the traditional set of key management problems system administrators have been dealing with for decades in physical data centers. In fact, this very topic, in conjunction with data security and privacy, is the subject of two presentations I’m giving in the next 30 days at:
- Texas Linux Fest -- San Antonio, TX -- August 4, 2012
- Linux Foundation’s CloudOpen -- San Diego, CA -- Wednesday August 29, 2012
How are you managing your most sensitive information stored in the Cloud? Are you encrypting that data? Where are you storing your cryptographic keys and certificates? And who has access to them? If you have a stake in your organization's security, these questions may be keeping you up at night.
Cloud storage and Big Data present significant opportunities for enterprises, but those opportunities bring several huge challenges. In this session, we’ll explore:
- What's not secure, not acceptable, not working --- but totally pervasive!
- Where encryption makes the most sense around Cloud and Big Data applications
- Key sprawl in the cloud
- The strengths and weaknesses of various key management options
- Easing the pain - Recent innovations for managing keys and company secrets
- Real-world use cases – from web servers to encrypted file systems to big data to SSH to SSL