Cloud security has been increasingly favored over on-premises security for many years now. Its enhanced automation and increasing interoperability solidify its position as a top choice for businesses.
According to Gartner’s statement years ago – which drew much ridicule – by 2020, IaaS workloads would have 60% fewer security incidents than workloads in traditional data centers. Both hyperscalers and third-party security providers are spending around 70 to 80% of their R&D budgets supporting public clouds. It’s no surprise that the quality and functionality of most cloud security technologies will surpass traditional on-premises systems.
Therefore, here are three trends that cloud security could become in the next three years, or even sooner:
Automating everything
Today, some security systems automate existing processes, but within five years, this process could be upgraded many times over. We could see highly flexible interaction with potential threats, supported by a machine learning system, using coordination between the cloud and an internal crowd of various resources to find/prevent attacks.
This shifts Cloud Security from a passive to an active state. We will no longer have to wait to be attacked; instead, we can detect when an attack is about to occur and automatically challenge the attacker with automated defenses before the first intrusion takes place.
Focus on intercloud security
As we move into the multi-cloud world, we are increasingly realizing that using separate security systems for each public cloud is too laborious and creates complexity and confusion, potentially leading to breaches and errors.
The multi-cloud model isn’t really about the cloud. It’s about the technology that exists between the clouds. The technology has access to the native interfaces, but logically, runs across all public clouds. This means we can coordinate services to establish a unified defense system as well as share knowledge bases on how best to protect against specific types of attacks. Additionally, we will also need visibility into all applications, databases, and key storage systems across all public clouds; for example, CPU saturation could be seen as a potential attack.
Eliminating Humans
We might think of a Terminator-like scenario where machines turn us on, but the reality is that humans are the weakest link in the security chain. Gartner claims that by 2025, 99% of cloud security failures will be customer-related.
Whether it’s misconfiguration creating opportunities or obvious mistakes due to lack of training, the more we remove humans from the cloud security equation, the safer we become.
This will go back to the “automate everything” approach that most security systems will use to deliver cloud security within three years. Don’t worry about your work. Someone will have to set up these automation processes and continuously improve them over time.
The bottom line is that security will improve and the cloud will become the safest place. As long as R&D money is poured into cloud-based security, this is a conclusion that can be disregarded.
Source: www.infoworld.com
