Community Cloud

Community Cloud

Cloud adoption continues to grow, the Australian government has even adopted a cloud first policy. For those considering cloud there are many different options: public cloud, community cloud and running your infrastructure in-house.

Principle: Use as much of the cloud as possible

DTA Secure Cloud Strategy

Running your infrastructure in-house doesn’t benefit from economies of scale or the expertise that cloud providers can offer and integrate into their products. Public cloud has the problem that you simply don’t know who you are sharing your infrastructure with. Shared infrastructure on public cloud means you are:

    • Sharing physical machines
    • Sharing network fabric
  • Sharing storage devices and APIs

These pieces of infrastructure are all logically partitioned with hypervisors and other security mechanisms but these can fail and attackers can get around them as we have seen in the various “cloud hopper” attacks over the years.

To mitigate these problems the concept of community cloud – limiting who is on the infrastructure – was created. Making the tenants on a cloud exclusive stops hackers from being able to jump on the infrastructure right next to your machines with a stolen credit card, as they can with public cloud. Community cloud delivers all the benefits of public cloud while mitigating the risks.

At Vault we built our technology to TOP SECRET level controls, but we also provide security and assurance on top of this through being entirely sovereign and offering two community cloud configurations for customers:

Government Cloud. Built exclusively for government, and appointed contactors, our Government Cloud was in the first group to achieve the highest possible certification of PROTECTED. With successful IRAP assessments to SECRET in the past we also offer SECRET ready configurations on Government Cloud.

Critical Infrastructure Cloud. This cloud is a clone of our Government Cloud and is designed for both critical infrastructure providers and government. It currently holds a certification to UNCLASSIFIED DLM.

Sign up to our portal to learn more, or get in touch by phone or email