Cloud adoption in Australia continues to grow rapidly, fuelled by the need for digital transformation, variable consumption models and lower costs. Those considering cloud have different options including public cloud (e.g. AWS, Azure and Google), community cloud (e.g. Vault Cloud) and running your own cloud in-house.
Principle: Use as much of the cloud as possible
Running your own cloud in-house doesn’t benefit from economies of scale or the expertise that cloud providers can offer and integrate into their products. It looks very much like running everything in-house always has.
Public clouds (e.g. AWS, Azure and Google) also have shortcomings such as ‘buyer beware’ levels of security, issues with sovereignty allowing jurisdiction of foreign legislation and surveillance. Public clouds by nature are also open to any customer with a credit card, opening the possibility of organised crime and other cyber criminals operating on those platforms and the possibility of in-platform lateral attacks.
If you consume public cloud then you simply don’t know who you are sharing your infrastructure with. Shared infrastructure on public cloud means you are:
These pieces of infrastructure are all logically partitioned with hypervisors and other security mechanisms but these can fail and attackers can get around them as we have seen in the various “cloud hopper” style attacks over the years.
If you are concerned about the sovereignty and security risks of Public Cloud, especially those security risks that follow from the fact that anyone with a credit card (including organised crime) can become a tenant, then you should consider Vault Cloud:
Government Cloud. Built exclusively for government, and appointed contractors, our Government Cloud was in the first group to achieve the highest possible certification of PROTECTED, having successfully passed an IRAP assessment to SECRET we also offer SECRET ready configurations on Government Cloud
Critical Infrastructure Cloud. Critical Infrastructure Cloud. This cloud is a clone of our Government Cloud and is designed for both critical infrastructure providers and government, it currently holds a certification to UNCLASSIFIED DLM