Field-tested best practices and considerations for securely migrating data, apps, and services into the cloud Organized with network architects and network operations managers in mind, Secure Cloud Deployment is geared towards those not yet in the cloud and/or only partially in who need a roadmap for planning and migrating securely into the cloud. The book also provides an essential spot-checking guide for those organizations already in the cloud but without airtight security. This practical guide is organized into three main sections: A Cloud Security Model, Inner Workings, and Operational Concerns. Part I details how secure networks are built today, features and concerns, a thorough analysis of cloud solution providers (Amazon, Salesforce, Microsoft, etc.), and consideration for moving applications and services into the cloud. Part II details the more technical inner workings of securing data in the cloud, including attack surface reduction, storage, hypervisors, engineering, and best practices for adding to and tailoring cloud systems.
Part III goes into the important operational and upkeep concerns, responding to and documenting incidents regarding the cloud, and efficiencies for ongoing maintenance. Secure Cloud Deployment Delivers best practices rooted in successful, secure migrations implemented for high-profile customers, including Netflix, Amazon, Zynga, and more Explains how to deploy securely into the cloud, how to manage that deployment, and how to react to issues when they arise Reveals where data actually goes and how it's stored there, as well as the new cloud equivalents for functionalities that previously existed on a physical network Provides thorough explanations of cloud services, such as Amazon, Salesforce, Microsoft, and others--as well as the kinds of APIs that can be built to work with them Shows how to build additional wrap-around services and security features for more complex control, reporting, and system efficiencies
Sprache
Verlagsort
Verlagsgruppe
McGraw-Hill Education - Europe
Zielgruppe
Illustrationen
ISBN-13
978-0-07-179864-8 (9780071798648)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Klassifikation
Chris McNab is a security consultant specializing in secure cloud migrations with full-service security firm iSec Partners. He was CTO of the anti-piracy and monitoring company DarkStar Technologies and Technical Director and co-founder of London-based security consulting firm Matta. McNab has presented and run applied hacking courses across Europe, training financial, retail, and government clients in practical attack and penetration techniques aimed at improving their own data protection. He speaks regularly at security conferences and seminars and provides frequent expert opinion on security for television and radio stations in the UK (including BBC 1 and Radio 4), as well as technology magazines.
Part 1: THE CLOUD 1. Cloud Architecture 2. Secure Cloud Architecture Part 2: SECURE CLOUD INFASTRUCTURE 3. Hardening Network Infastructure 4. Hardening Compute Infastructure 5. Hardening Storage Infastructure Part 3: SECURE CLOUD OPERATIONS 6. Virtualized Instance Hardening 7. Application Server Hardening 8. Hardening Application Logic & Code Part 4: AUXILIARY SUPPORT MECHANISMS 9. Cryptography 10. Authentication, Authorization, and Access Management 11. Infrastructure and Application Management 12. Auditing, Logging, and Alerting 13. Incident Response and Disaster Recovery CASE STUDIES Case A: IaaS Deployment Case Study (AWS) Case B: PaaS Deployment Case Study (Azure)
