Last week I participated in a Wikibon sponsored Crowd Chat about Multi-Cloud Data Protection with a variety of brilliant industry pundits.
One of the more interesting angles was around the important of security policies in the cloud. I made the point that:
"Policy based controls are essential for sensitive data in the cloud. Otherwise you are at the mercy of the operator. And it's not just encryption, it's all about controlling the access to the data item, regardless of format or location."
@andriven made a great point about policy via encryption: "u can't actually delete data in the cloud... but you could do pretty granular encryption...deleting the keys guarantees the data is inaccessible"
On migration, a great comment by @ekaulberg: it can be "hard/costly to move data among clouds, guaranteeing consistent security policies" across cloud.
On what, when, where to protect: "nowhere where data is outside the 'protection' envelope" (@jameskobielus)
There's more to review here: https://www.crowdchat.net/chat/c3BvdF9vYmpfMjg5OQ==
Overall, a great discussion. Thanks to @Wikibon for provoking it
