Virtualization Technology News and Information
CloudKnox Security 2019 Predictions: Hybrid Cloud, Tougher Insider Threats, and New Security Perimeters

Industry executives and experts share their predictions for 2019.  Read them in this 11th annual series exclusive.

Contributed by Balaji Parimi, Founder and CEO, CloudKnox Security

Hybrid Cloud, Tougher Insider Threats, and New Security Perimeters

It should come as no surprise that security was a major concern throughout 2018. In the past few months alone, an internet service provider exposed sensitive data with a misconfigured Amazon S3 bucket, Nordstrom's cybersecurity breach revealed employee's personal information, and Elasticsearch's server experienced a severe vulnerability. These and other major breaches continued to be top of mind as we headed into the New Year, making cloud security more important than ever. With 2019 now in full swing, here are the top cloud security predictions to help you plan ahead:

1.      Hybrid Cloud Takes Center Stage

More enterprises than ever before will embrace hybrid-cloud, fast-tracking adoption in 2019. The challenges of managing and securing hybrid cloud infrastructure will highlight the lack of visibility into and complexity of these critical environments. For example, each AWS account operates essentially as its own mini data center and most IT organizations will require multiple AWS accounts to support their respective businesses. Enterprises will have no choice but to refocus their attention on better understanding and harnessing their complex and uncontrolled cloud environments.

2.     The Rise of Non-Human Identities Will Make Insider Threats Even Tougher to Mitigate

Today, there's an average of six non-human identities (e.g. service accounts, bots, servers, API Keys, applications etc.) for every human identity and this ratio will continue to increase exponentially. Organizations are already struggling to understand basic information like "how many (and which) identities can touch the infrastructure," "what privileges do those identities have," "what actions have they taken" and "what privileges do those identities really need to perform their jobs." The rise in non-human identities will make these questions - and most importantly, the risk these identities introduce - more crucial and more exceedingly difficult to identify and manage.

3.     Identities Will Become the New Security Perimeter

In 2019, the big cloud providers will start to realize that most enterprises are not going to migrate 100 percent of their applications to public cloud and will focus on delivering solutions that provide a seamless hybrid-cloud experience. This will further blur the definition of the security perimeter, effectively making "identities" the new perimeter. Couple this paradigm shift with the unprecedented levels of automation that give identities vast power and enterprises will begin to rethink their approach to managing identity privileges across clouds. Enterprises will move away from depending on static role-based access controls (RBAC) to manage identity privileges and will start to turn to more dynamic authorization models (like activity-based authorization) to achieve the principle of least privilege.


About the Author


Balaji Parimi is Founder and CEO of CloudKnox Security, a cloud security company that empowers organizations to manage the identity privilege lifecycle across hybrid cloud utilizing a revolutionary Activity-based Authorization model. Prior to founding CloudKnox, Balaji was VP of Engineering and Operations at CloudPhysics, Staff Engineer at VMware, Architect and Technical Lead at 8X8, and Senior Software Engineer at Quality Call Solutions.

Published Friday, January 25, 2019 7:18 AM by David Marshall
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<January 2019>