Who Is

watching out for you?

In today's world you need to understand a few more things...

Who Is

knocking on your virtual front door?

It could be someone down the block or from the Bloc

Securing above and beyond the typical cloud

Mike Chase, dinCloud

14-October-2015 Cloud customers have resigned themselves to the take it or leave it mentality.

“I went to recent event, and it’s shocking how many companies are hosted on Amazon and how few questions they’ve asked,” said Mike Chase, EVP, dinCloud.

“Amazon would throw out a statement like, ‘we have the most secure data center, with guards and cameras and such.’ A guy would ask another question, and Amazon would say ‘there’s no publicly available information about that.’ So we’re supposed to trust, but we can’t verify.”

There used to be a saying: Nobody gets fired for buying AT&T.

“But they ought to,” Chase said. “Having worked for a lot of companies, I’m shocked that we don’t get grilled like a tuna. These days everybody says cloud is out there, it’s redundant, and it’s never going to go down.”

At the same presentation, Chase was also shocked by a slide that at the top said virtual, and at the bottom said physical, firewalls. Not backed by virtualization. When questioned, the answer was ‘There’s no publicly available information. The slide is what it is.’

So Chase logged into his account and started pinging the firewall. “I looked up the MAC address, which was totally spoofed, so we have no idea,” he said. “All these claims are made, and can’t be verified.”

According to Chase, there are a lot of combined components in the cloud that never should have been combined. When there’s an issue it spreads, resulting in massive outages.

For example, many cloud components are built on Open Stack – the open source software standard.

“We saw these issues happening, where customers weren’t able to see the infrastructure they were committing their entire businesses too,” Chase said. “The structures created a system too susceptible to these outages.”

Excessively regulated industries like health care and legal often refuse to put their data in the cloud, for those reasons.

“Our orchestration platform assures that data isn’t lost or corrupted by having an issue with our system,” said Chase. “Customers are separated, and issues cannot spread. Key components are virtualized and dedicated to each customer. It’s a more expensive approach than integrating everything on a central system.”

To protect its customers’ data dinCloud takes a backup image of the entire cloud every day, and holds it for 10 days, for free. So it can roll a customer back to any point in time. Even if the worst happens and a disgruntled employee or hacker deletes the entire cloud, the customer can be rolled back.

“Last year two customers got infected with CryptoLocker and everything they had was encrypted,” Chase said. “They’d forgotten that we hold it for 10 days free. So we restored their file share servers, and gave them all of their data back in a couple of hours. I don’t know of any cloud service provider doing that.”

Today in the cloud few customers back up everything. Some providers offer snapshots, which customers have to pay for. That doesn’t protect from a hacker who deletes your snapshots too. Backup has to include system and user level snapshots or you’re not protected.

“We have 40 different mechanisms other clouds don’t offer. That’s why we have banks, health care, and law firm customers,” said Chase. “We don’t charge data transfer fees, and we have IP reputation – hundreds of millions have been blocked with not one false positive.”

The firm uses Threatstop filtering on all traffic, in and out.

“Every data center is attacked 100,000 times every month. If Sony and Target had used Threatstop those attacks would have been blocked,” Chase said. “To me it’s unconscionable to not protect customers fully. Not once in five years has any one of our customers been breached. We don’t give customers that option.”