Content Security in the CLoud


Bruce Devlin TV-Bay Magazine
Read ezine online

Security is a difficult topic. There is no such thing a generic security. You always secure yourself against specific threats and hope the solution is generic enough to cover other similar classes of threat. For example - placing an expensive lock on the front door of your house prevents the specific threat of gaining access by using the door handle on the door. It gives you no protection at all from someone using a diamond tipped chainsaw to cut through the house to make a new door. (Yes this is a real thing - a friend of mine trains law enforcement officers to do this).

One of the great opportunities that comes with cloud processing and cloud storage of content is that it 's new and it 's flexible and it allows new ways of collaborative working that cannot be done any other way.

One of the commercial risks that need to be addressed with cloud processing is that of security. In any cloud deployment there will be multiple organisations involved. You may be buying Software As A Service (SaaS) to store, edit and manage your content. The SaaS provider is running parts of their software on top of another company 's Platform As A Service (PaaS) to provide some global service to their software (e.g. Authentication and Identity services) and that platform may be physically running on multiple Infrastructure As A Service (IaaS) datacentre instances to make the whole thing work.

If security is a key commercial driver for you adoption of any cloud technology then understanding the threats to the different stakeholders in the chain is vital to the overall security model. Having great user authentication at the SaaS layer is good, but it won 't protect against someone with a diamond tipped software chainsaw gaining entry at the PaaS layer. Likewise the PaaS layer is only secure when the physical, network and software security at the IaaS remain intact and no-one leaves a back door open.

Cloud security is a fluid and ever changing topic with Best Practise being re-written with every new data breach. It 's important to realise, however, that an unencrypted server full of content on-premise is unlikely to be more secure than having the same data encrypted in a best practise cloud environment.

Most security specialists agree that building an impenetrable system is impossible, so the pragmatic approach to securing content in the cloud is to have a variety of strategies that can mitigate against an inevitable breach. This can lead to interesting conversations with the software and platform suppliers. For example - assuming that your content is encrypted on the servers of your SaaS provider then who holds the keys to the decryption? Is it the SaaS provider or is it you? There is no correct universal answer to the question, but know that it should be asked and knowing the answer can help to build a risk model and from that a mitigation strategy if you need content security.

One of the final issues to consider is "How do you detect a data breach". This is more difficult than it sounds. If you 've followed the Linked In 2012 data breach story (see Wikipedia for up to date references) you will see that it took some time to detect that a breach had occurred and much longer to evaluate the full scale of the breach. If security of content is important in your business then detection of a breach must form part of an overall risk mitigation strategy.

Time for me to go home and write next month 's class. Now where did I leave my keys?


Tags: iss114 | cloud security | saas | paas | Bruce Devlin
Contributing Author Bruce Devlin

Read this article in the tv-bay digital magazine
Article Copyright tv-bay limited. All trademarks recognised.
Reproduction of the content strictly prohibited without written consent.

Related Interviews
  • New CEO and news update from TMD at NAB 2017

    New CEO and news update from TMD at NAB 2017

  • Forscene at IBC 2014

    Forscene at IBC 2014


Related Shows
  • KitPlusTV summarise the Broadcast and Pro Video News 22nd March 2021

    KitPlusTV summarise the Broadcast and Pro Video News 22nd March 2021


Articles
The Future of Broadcast Technology
Manfred Reitmeier

Now that OTT and VOD have become more mainstream, many commentators talk about traditional broadcast methods, like terrestrial transmission, being a thing of the past. With so many new platforms and non-traditional content services carving out a growing slice of the market, you can be forgiven for thinking that linear over-the-air television is on its way out. The reality is that the industry must strike a balance between meeting consumers’ shifting habits and the business and operational needs of content providers.

Tags: Rohde Schwarz | 5g broadcast | Manfred Reitmeier
Contributing Author Manfred Reitmeier Click to read
A switch in time: how KVM can unlock the future of broadcasting
Chris Smeeton

One of the major changes for broadcasters during the pandemic has been the shift towards remote production; by no means a new phenomenon in an IP environment, yet accelerated under lockdown to accommodate travel and gathering restrictions. A 2021 report found that almost 40% of broadcast professionals now employ remote production, up 9% on the previous year.

Tags: KVM | ARGOSY | GDSYS | KVM Tech | Chris Smeeton
Contributing Author Chris Smeeton Click to read
Rohde & Schwarz integration with Adobe Premiere Pro
Ciaran Doran

Rohde & Schwarz SpycerNode storage & VENICE ingest are perfect partners for Adobe workflows

Tags: Rohde Schwarz | media | VENICE | SpycerNode | adobe | premier pro | Ciaran Doran
Contributing Author Ciaran Doran Click to read
Cloud integration: The only way is up
Francois Vaillant

In 2017 we saw the introduction of SMPTE 2110 and since then, the transition to IP has emerged as a priority for broadcasters looking to streamline their operations, decrease their footprint and effectively integrate with an industry in a rapid state of flux. A 2020 survey by Devoncroft found that almost 20% of broadcasters had already deployed SMPTE 2110, and over 25% were planning to do so. Then came the pandemic, precipitating the need for on-the-fly collaboration and accelerating the transition to remote, virtual and cloud production.

Tags: dejero | smpte 2110 | dazzl | streaming | Francois Vaillant
Contributing Author Francois Vaillant Click to read
The Cloud - a measured approach
Ciaran Doran

With the buzz of ‘cloud’ everywhere in our industry it would be natural to think that cloud is the only game in town. Isn’t it time to step back and consider very carefully how, or whether, you make that journey to the cloud?

Tags: cloud | rohde and schwarz | rohde | schwarz | Ciaran Doran
Contributing Author Ciaran Doran Click to read

Registration for the KitPlus Show at MediaCity is now OPEN with headline sponsor Blackmagic Design. The doors open from 10am to 4:30pm on 23rd June 2022. This is a FREE to attend event so please visit the Manchester venue page to see exhibitors, sessions and workshops, plus check out our Virtual Production Learning Zone from the Mo-Sys Academy at the show.