Each day at AFORE, we work with business enterprises and cloud service providers who are taking advantage of the benefits that the hybrid cloud has to offer. We believe that the significant growth we’re seeing with hybrid cloud deployments will only continue to increase. In fact, Gartner recently stated that “Nearly half of large enterprises will have hybrid cloud deployments by the end of 2017”.hybrid2
The appeal of the hybrid cloud is that it allows an organization to distribute workloads across the private cloud (the enterprise data center) and one or more public clouds. This distributed workload environment is a proven approach for deployment flexibility, infrastructure scalability, and cost-effective use of resources. However, given the shared nature of the hybrid cloud, we regularly hear concerns about how to ensure the security of sensitive data across this form of multi-tenant, heterogeneous infrastructure.
Whether your sensitive data is confidential financial documents, intellectual property, customer identity records, or regulatory compliance information, it’s critical that you take every precaution necessary to keep that data safe from increasingly sophisticated threats, data breaches, cyber-surveillance, third-party cloud administrators and data remanence.
At a high-level, here are a few considerations to keep in mind if you’re concerned about how to best secure your sensitive data in the hybrid cloud:

  • What data do you need to secure? While there’s a cost associated with securing data—whether that be financial or business flexibility—it’s critical to keep confidential documents, personal information, and regulatory compliance data secure. As you evaluate encryption solutions, look for approaches that allow you to selectively encrypt only sensitive data.

  • When does data need to be encrypted? While every organization is different, there are some common considerations that generally apply to determine when data needs to be encrypted. As an example, most sensitive data should always be encrypted when “at rest”. Similarly, data transferred from the application layer to the storage layer (referred to as “data-in flight”) may also need to be encrypted to keep it safe from cloud admins or other tenants. For mission-critical situation, encrypting data at the point of use is critical to lock down all points of egress.

  • Where does data live? Sensitive data is everywhere in your organization. Users work with it across various applications, on different devices and workloads are often distributed across the private data center and, possibly, multiple public cloud environments. While you need to protect sensitive data no matter where it exists, practical considerations can make that quite a challenge to manage. A centralized encryption management solution provides “single pane of glass” visibility to control, manage, and report on data security no matter where sensitive data reside, which reduces risk and streamlines regulatory compliance initiatives.

  • Who controls the encryption keys? As the data owner, you should always have control over the encryption keys, not your cloud provider. This control is important to ensure that you—and only you—have access to your sensitive data both now and in the future, should you change cloud providers.

At AFORE, we’ve introduced a single solution for the hybrid cloud that addresses many of these challenges. This platform is designed to secure diverse IT initiatives including storage infrastructure, business applications, and cloud-hosted desktops. The platform provides the encryption foundation for securing mission-critical data across heterogeneous infrastructures, as well as the flexibility to customize the encryption granularity based on the needs of users, IT and security managers, and cloud providers.
Current news already has too many examples of companies with reputations or brands that have been badly damaged by data security breaches. With careful planning and a comprehensive security solution that’s custom fit for your data encryption needs, you can be confident that your organization’s reputation and brand will remain trustworthy.

Leave a Reply


We are very pleased to announce that CloudLink has been acquired by EMC Corporation.  EMC is the leader in delivering solutions that enable the world to store, manage and leverage data.  The EMC Federation Enterprise Hybrid Cloud enables customers to deploy IT as a Service quickly and easily.  CloudLink is an award-winning provider of software-based data security solutions for hybrid clouds.  As part of EMC, CloudLink will empower customers to embrace the hybrid cloud while addressing concerns around data security and sovereignty, and maintaining regulatory compliance.

Since CloudLink turned its focus to cloud security more than four years ago, we have been heartened to witness the exponential growth of private, public and hybrid cloud and honored to help our customers embrace this new paradigm.  Our induction into the EMC Select partner program two years ago was both a privilege and an excellent opportunity for us to develop solutions that truly address customer needs.  We are eager to contribute to the customer value EMC delivers through its industry-leading innovation, service and support.

Above all, we’d like to extend our thanks to our customers, partners and employees, as well as everyone who has helped us evolve and innovate.  We are very excited to join the EMC family and look forward to continuing our joint commitment to making hybrid cloud a success. If you have any immediate questions, please do not hesitate to contact us at cloudlinkquestions@emc.com.


The CloudLink Team

PS Read the story behind the acquisition.