Data Protection in the Public Cloud: A Look at the Good, the Bad, and the Ugly presented at SecureWorld 2019

by Kenneth G. Hartman,

Summary : Customers want to ensure that they can entrust their sensitive data to public cloud providers. This often leads to discussions with the cloud provider on various aspects of data protection, such as retention, encryption, and key management. If encryption is not implemented properly it will not provide the security assurance customers expect, resulting in misplaced trust. This talk will look at encryption at rest in various layers of the application stack with a focus on the risks each type of encryption mitigates. We will also look at various cloud-related key management schemes, including “bring your own key” (BYOK) and cloud-based Key Management Systems (KMS). Lastly, we will cover potential problems with customer data-retention that should be explored with the cloud service provider.