Among the biggest considerations companies face when selecting public cloud service providers is the level of cyber security they offer, meaning the features and capabilities they put in place to protect their own networks and services and to keep their customers’ data safe from breaches and other attacks.
The three major cloud providers—Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure—each take security seriously for obvious reasons. One well-publicized security breach that ends up being blamed on their services could scare off untold numbers of prospective customers, cost millions of dollars in losses, and possibly lead to regulatory compliance penalties.
Here’s what the big three cloud providers are providing in four key areas of cyber security.
Network and infrastructure security
Amazon Web Services
AWS provides several security capabilities and services designed to increase privacy and control network access. These include network firewalls that allow customers to create private networks and control access to instances or applications. Companies can control encryption in transit across AWS services.
Also included are connectivity options that enable private or dedicated connections; distributed denial of service mitigation technologies that can be applied as part of application and content delivery strategies; and automatic encryption of all traffic on the AWS global and regional networks between AWS secured facilities.
Google Cloud Platform
The company has designed and implemented hardware specifically for security, such as Titan, a custom security chip that GCP uses to establish a hardware root of trust in its servers and peripheral devices. Google builds its own network hardware to improve security. This all rolls up into its data center designs, which include multiple layers of physical and logical protection.
Microsoft Cloud App Security is a cloud app security broker that combines multi-function visibility, control over data travel, user activity monitoring, and sophisticated analytics, allowing customers to identify and combat cyber threats across all of their Microsoft and third-party cloud services. Designed for information security professionals, Cloud App Security natively integrates with security and identity tools including Azure Active Directory, Microsoft Intune, Microsoft Information Protection, and supports various deployment modes including log collection, API connectors, and reverse proxy.
Copyright © 2021 IDG Communications, Inc.