BLOG – Security in the Cloud: a good idea?

By: William de Ruijter – IT Infrastructure Specialist At Mactwin, we regularly get the question: “Can’t the offered solution be in the Cloud?”
An understandable question, because everything is possible in the Cloud.
But is that such a good idea?
To answer that, let’s first dive into the definition of ‘Cloud’.
According to Wikipedia, the Cloud is a network that – with all the computers connected to it – forms a kind of ‘cloud of computers’, where the end user does not know how many or which computer(s) the software is running on or where those computers are located.
This explanation immediately strikes a chord with me.
Running a security system in an environment of which the location, size and probably also the processor are unknown; Is that what you want?
With these kinds of (vital) systems, you want to know and control who can access the data, with whom data can and may be shared and, last but not least, where the information is located.

Hosted server

Often, however, our customers mean a hosted server.
One that is not located at its own location, but in a data center where the infrastructure is already redundant by default.
Sometimes there is even talk of its own cluster, where the Cloud is built up in miniature.
The customer’s network is accessed – neatly encrypted – to this hosting environment and the server there provides its services in a stable, secure and fast manner.
At least that’s the promise of the data center.
But what if the connection is just not stable today?
To limit that risk, alternative connections can be made to the data center, such as Secure 4G or a backup ADSL.
However, that comes at an additional cost.
The question then is whether it would not be better and cheaper to set up a redundant infrastructure yourself instead of moving to a server in the data center.

Volg ons op Linkedin

On-premise server

As an IT professional, I usually prefer a server on my own location.
Many security systems have local hardware anyway and the fewer components and parties in between, the smaller the chance of disruptions.
Today’s servers can run for years without any problems.
To ensure continuity, you can provide them with redundant power supplies, redundant disks and a good service contract.
In certain situations, I think a (hosted) Cloud solution is a good alternative.
For multi-site infrastructures, for example, this can be a safe and cost-efficient solution.
The locations are often dependent on the WAN infrastructure and instead of placing a server at every location, a central server in a data center can be a great solution.
And, depending on the desired availability and bandwidth, this solution is also manageable in terms of complexity and costs.

New possibilities through Cloud services

With the rise of Cloud services, we are also seeing a new development.
Suppliers of access control systems, for example, offer their customers the option of running their solution on a server at the supplier location.
An important advantage is that the supplier ensures that you have the latest software version as standard.
Customers will also have access to an app that allows them to control the system via their smartphone or a web portal.
Convenient and easy to use.
But I advise you to take a very critical look at the security level here as well.
After all, everything you access via the internet is more vulnerable than if it is not unlocked.
And even if these systems are ICT safe, you may wonder what happens if you lose your mobile… Can the person who finds your phone then see the images, switch the alarm or open the doors?

Conclusion

In 2017, Cloud services are here to stay.
All kinds of suppliers offer this comfort and this form of unburdening.
We should certainly reap the benefits of this.
But I advise anyone who is faced with the choice of running their security systems on their own server or a hosted server, to take the security aspects into account.
This, of course, in relation to the deductibles.
The higher or greater the risks, the more important the security aspects must be taken into account.
If there are insufficient guarantees regarding data security, I prefer to have my own server.