By: William De Ruijter – IT Infrastructure Specialist

At Mactwin, we frequently receive the question: “Can’t the proposed solution be implemented in the Cloud?” A reasonable question, since everything can be done in the Cloud. But is that really such a good idea?

To answer this, let’s first examine the definition of ‘Cloud’. According to Wikipedia, the Cloud is a network that – with all computers connected to it – forms a kind of ‘cloud of computers’, where the end user doesn’t know on how many or which computer(s) the software runs, or where these computers are located. This explanation immediately strikes a sensitive chord with me. Running a security system in an environment where the location, scale, and likely the processor are unknown; is that what you want? With these types of (vital) systems, you surely want to know and control who can access the data, with whom data can and may be shared, and not least, where the information is located.

Hosted server

However, our clients often mean a hosted server. One that isn’t located on their own premises, but in a data center where the infrastructure is already redundantly implemented by default. Sometimes there’s even a dedicated cluster, where the Cloud is built on a smaller scale. The client’s network is – properly encrypted – connected to this hosting environment, and the server there delivers its services stably, securely, and quickly. At least, that’s the data center’s promise. But what if the connection happens to be unstable today? To mitigate this risk, alternative connections to the data center can be established, such as Secure 4G or backup ADSL. However, this incurs additional costs. The question then becomes whether it wouldn’t be better and more cost-effective to set up your own redundant infrastructure instead of relying on a server in the data center.

On-premise server

As an IT professional, I usually prefer a server on-premises. Many security systems require local hardware anyway, and the fewer components and parties involved, the lower the risk of disruptions. Modern servers can run trouble-free for years. To ensure continuity, you can equip them with redundant power supplies, redundant disks, and a good service contract. In certain situations, I do consider a (hosted) Cloud solution a good alternative. For infrastructures with multiple locations, for example, this can actually be a secure and cost-efficient solution. The locations often depend on WAN infrastructure anyway, and instead of placing a server at each location, a central server in a data center can be an excellent solution. And, depending on the desired availability and bandwidth, this solution is also manageable in terms of complexity and costs.

New possibilities through Cloud services

With the rise of Cloud services, we’re seeing a new development. Suppliers of access control systems, for example, offer their clients the option to run their solution on a server at the supplier’s location. A significant advantage is that the supplier ensures you always have the latest software version. Clients also get access to an app allowing them to operate the system via their smartphone or a web portal. Convenient and user-friendly. However, I advise being particularly critical of the security level here as well. After all, anything you expose to the internet is more vulnerable than if it remains unexposed. And even if these systems are IT-secure, you might wonder what happens if you lose your mobile phone… Can someone who finds your phone view the footage, control the alarm, or open the doors?

Conclusion

In 2017, Cloud services have become indispensable. Various suppliers offer this convenience and form of outsourcing. We should certainly reap the benefits. However, I advise everyone facing the choice between running security systems on their own server or a hosted server to carefully weigh the security aspects. This, of course, in relation to their own risks. The higher or greater the risks, the more heavily the security aspects should weigh. When there are insufficient guarantees regarding data security, I prefer an on-premises server.