Free trial

Securely embrace the public cloud

Digital transformation: the new normal

The push to make the digital transformation (DX) was accelerated the last couple of years, with an unprecedented digitization of activities, when organizations needed to move to remote and, later, hybrid work setups. Those that made that push know that innovation is the key to staying competitive, but it shouldn’t be at the expense of security. 

The digital transformation depends on the adoption of cloud computing, but like all technology, the cloud is also evolving and innovating. A notable effect in the digital domain is that the use of cloud-hosted solutions is no longer just about data storage. These solutions now extend to environments in which data is used for transactional purposes and supports the daily operations of companies (digitization of internal operations, back-office processes, production, R&D,…).

Familiar platform technologies like PaaS (Platform as a service) have moved to cloud-native designs. For organizations to make a successful digital transformation, they must understand the capabilities of these new cloud architectures and how to adapt their old systems for these changes. Cloud-native architecture offers greater scalability for larger numbers of users and identities, with the ability for rapid data transfer across disperse locations. In a nutshell, the digital transformation to cloud-based applications have made new business operations possible over the past two years. Going forward, organizations will continue to adjust to connect a widely distributed computing, workforce and customer base.

But as more companies continue their journey to a digital transformation and cloud computing becomes more ubiquitous to business operations, organizations must also adopt new strategies for cybersecurity. An evolving cloud architecture introduces an evolving new attack vector for threat actors. 

It is possible to embrace the public cloud and digital transformation in a secure manner, but to do so is to understand how the cloud is changing and where the risks are.

Before considering the move

No matter the technology or network architecture, security has to be front and center in any consideration within the digital transformation. Because so much of the transition is cloud-centric, organizations must consider the risks before moving anything into a cloud format. Forbes offers the following questions to ask to best understand your data because the more you know about where your data lives and how it is used, the more confidently you can secure it:

  • What sensitive data resides on premise?
  • Where within your network infrastructure does sensitive data reside?
  • What data do you want residing in the cloud?
  • What security controls will you manage for data in the cloud?
  • Who has access to your organization’s data and are they able to access sensitive data?

Once you determine how to best manage your most sensitive corporate data, you can then begin to look at your different options within a cloud-native architecture and how to address security.

From Monolithic AppDev to Microservices

The old way of thinking about the cloud is its role in data storage. While that’s still a vital role of the cloud, the cloud of today (and of the future) is about microservices. Monolithic app development is designed as a single unit and is difficult to add new functions. Microservices are distributed applications that can be run using containers and are designed for rapid scaling and deployment. They make applications easier to build and maintain by decomposing them into manageable services that are faster to develop. 

But the move to microservices increases the security risks. A larger attack surface and relying on traditional logging applications are just two threat vectors to watch for. 

And any time new risks are introduced, threat levels around sensitive data rise. The need to protect sensitive data, which can include anything from corporate intellectual property to consumer personal identifying information, has long stood as a barrier to the digital transformation. That’s why data security must be a high priority within the microservices architecture throughout every stage of production including deployment.  

Public cloud Adoption-Related Innovation

Cloud adoption innovation offers new opportunities for business operations, ranging from greater agility to maneuver through abrupt changes (the pandemic and the supply chain is a good example of this problem), to deploy IoT and OT (Operational Technology) throughout a distributed workspace, and add the DevOps process to build products and services.

Of course, with innovation comes the need to re-evaluate security. In DevOps, it begins with DevSecOps, and as with microservices, building security directly into all new development and products. 

Shift left testing and security is growing in popularity as a way to bring testing and security into the development cycle much earlier. Rather than look for bugs in the software just before deployment – or right side of the development lifecycle – shift left adds testing and security during the earliest analysis and feasibility study phases as a way to prevent errors and problems further along the line.

Keeping innovations secure requires action before cloud adoption occurs. Organizations should be able to answer questions such as:

  • How much of the security within the cloud am I responsible for and how much is my cloud provider responsible for?
  • What steps will be used to authenticate access and identities within the cloud?
  • What security is available for the tools and technologies used in cloud-based innovations, like IoT?
  • Where and what type of security systems will you use? Will you implement a zero trust process? Secure data on the edge? 

Public Cloud versus On-Premise

There are still many who balk at relying on the cloud, saying it still lags behind on-premise security, and therefore, they delay their organization’s digital transformation. It’s time to dispel that old way of thinking. Maybe a decade ago, cloud security was unpredictable. That is not the situation today. Cloud providers have the resources, both human and technology, to offer security levels that most small companies can’t offer on premise. In the case of sensitive data and code, users can ensure an even higher level of security by using Confidential Container-as-a-Service (CCaaS), which provides confidential computing while offering more business agility in a secure environment.

Also, on-premise operations and security have become too costly. As Tom’s Guide stated, “for most businesses, implementing the necessary security measures on-premises is so costly as to be virtually impossible. Unless your business has multiple offices, a 24/7 security team, and an unlimited IT budget, cloud storage is more secure than on-prem storage.”

Security solutions even for the most sensitive data

Business needs the advantages brought by the digital transformation, particularly the adoption of the cloud and the edge, to remain competitive. Companies are still gaining an understanding of the shared responsibility model in public clouds, dictating the security accountability of the provider and of the user.

Virtual sovereignty can be gained with a solution like ARCA Trusted OS to isolate and execute sensitive workloads using confidential computing on demand. It is therefore possible to securely embrace the public cloud even when handling highly sensitive data, allowing your organization to innovate faster, with security built in every step of the way. The team at CYSEC can walk you through your digital transformation while offering the level of security you want for your data and code.

Learn more with a technical webinar 

Get a technical deep dive into understanding how ARCA Trusted OS leverages AMD-SEV security features utilized on Google Cloud Platform for confidential computing.

Watch now

Latest Industry News

CYSEC & TIESSE : Strategic partnership for satellite links security
CYSEC and Tiesse SpA have established a strategic industrial partnersh...Read more >
Performance benchmark made within the SYNAPSE project
The impact that the security provided by ARCA Trusted OS, CYSEC’s ha...Read more >
Qualification of the ARCA SATCOM solution
As part of studies conducted at CNES, CYSEC qualified its ARCA SATCOM ...Read more >
Securing Edge Devices: The Crucial Role of Root of Trust in a Connected World
In the rapidly evolving landscape of IoT (Internet of Things) and edge...Read more >
ARCAOS x86 compatibility with VM environments
CYSEC aims at offering the capacity to launch VMs running in Confident...Read more >
The SYNAPSE PROJECT
A snapshot of the collaborative SYNAPSE project between CYSEC and Look...Read more >
CYSEC design choices and security maintenance processes
Sovereign cloud is emerging as a preferred choice for many organizatio...Read more >
Unlocking the Potential of Remote Attestation: The Future of Trust and Security in a Connected World
The increasing prevalence of network-connected devices and the rise of...Read more >
Protect your sovereign cloud with CYSEC solutions
Sovereign cloud is emerging as a preferred choice for many organizatio...Read more >
A technical deep dive in the secure boot of ARCA Trusted OS for Raspberry Pi 4B
ARCA Trusted OS is an Operating System (OS) that can run on Raspberry ...Read more >
ESA PUSH
Within the PROGRAMME FOR USERBASE ENHANCEMENT (PUSH), ESA selected com...Read more >
Attested VM launch protocol : The result of CYSEC
CYSEC explored the attestation mechanisms offered by two different CPU...Read more >
ARCA SATLINK successfully tested in space
As part of a project for the European Space Agency - ESA our engineeri...Read more >
Linebreak and CYSEC join forces to securely unlock data in enterprise edge computing
enterprises need confidence when running their sensitive workloads in ...Read more >
ARCAOS x86 on mini-servers
CYSEC continues its edge computing strategy expansion by qualifying tw...Read more >
USE CASE MIDEYE – CYSEC
Mideye and CYSEC have decided to work together to deliver a simple and...Read more >
SixSq and CYSEC – A secure end to end edge computing solution
SixSq, an Ekinops company, and CYSEC are thrilled to announce their pa...Read more >
ARCAOS x86 compatibility on AWS
ARCA Trusted OS for x86 can now be deployed into AWS EC2 instances as ...Read more >
PostFinance and CYSEC
PostFinance, the fifth largest retail financial institution in Switzer...Read more >
Crosscon Project – Enhancing Security in Agricultural UAVs: The Power of Remote Attestation
One of the challenges faced by UAVs is their mobility and the potentia...Read more >
Leveraging ChatGPT at the edge on a Raspberry Pi protected by Arca Trusted OS
In this use-case, ARCA Trusted OS protects the data stored on the Rasp...Read more >
A Trusted Environment at the Edge to Run AI Applications
With the adoption of AI at the edge, companies will expand their busin...Read more >
CYSAT
CYSEC has been organizing CYSAT, the biggest European event entirely d...Read more >
Secure your Raspberry Pi for industrial grade usage with ARCA Trusted OS
CYSEC is pleased to announce its new born ARCA Trusted OS for ARM spec...Read more >
World’s first in-orbit cybersecurity demonstration at CYSAT
First offensive security demo on a flying satellite at CYSAT - In orde...Read more >
Trusted and Secure Stream Analytics for Industrial IoT
Crosser, creator of a market leading low-code platform for stream anal...Read more >
What are the NIST SP 800-190 countermeasures in ARCA Trusted OS?
In addition to these recommendations specific to the host OS, ARCA Tru...Read more >
CYSEC AND SIGHUP PARTNER UP
SIGHUP is partnering with Cysec to provide a secure kubernetes-based c...Read more >
Cysec and Ingram Micro new partnership
Ingram Micro Italy, a global leader in Technology and Supply Chain Ser...Read more >
Cysec and Syntheticus team up
“Cysec and Syntheticus team up to offer a solution enabling the migr...Read more >
SECURED FLEET OF DRONES
The drones industry is getting a lot of success in many verticals such...Read more >
CYSEC raises 2 million CHF with KARISTA’S Newspace Fund
CYSEC announces it has raised an additional €2m from Karista. The bu...Read more >
How Cysec helps you leverage confidential VMs in public clouds
Based on the Confidential Computing Consortium, Confidential Computing...Read more >
For automated, scalable, and secure edge computing environments
LAUSANNE, SWITZERLAND. and STOCKHOLM, SWEDEN. Cysec, a software provid...Read more >
How to migrate your sensitive data to public clouds?
There is a clear trend to migrate data from organizations and companie...Read more >
Web3 and Secure Computing: Cysec case Study
Web3 refers to the next Internet generation, one that leverages public...Read more >
CYSEC featured on cybernews!
Cysec has been mentioned, by the experts of cybernews.com, as one of t...Read more >
Kata Containers: Cysec case Study
Cysec offers to run its orchestration platform with several runtimes s...Read more >
Spacebel and CYSEC team up on a contract with the European Space Agency (ESA)
The European Space Agency (ESA) awarded a contract to Spacebel (Prime ...Read more >
“Because of geopolitical and economical pressures, company data protection is essential”
A talk with the CEO and Co-Founder of CYSECRead more >
Announcing Nicolas Chaillan and Octave Klaba as keynote speakers at CYSAT
The full event agenda is liveRead more >
New Space Economy MOOC
An online course on the challenges of commercial space missions.Read more >
Kata Containers: the ultimate workloads isolation
Introducing Kata Containers supportRead more >
Cybersecurity for Enterprise Blockchain Solutions
Blueprint paper - Crypto ValleyRead more >
Cosimo Calcagno joins Board of Directors
New member of the Board of Directors and investor.Read more >
Securely embrace the public cloud
Innovate faster, with security built in every step of the way.Read more >
Embedded KMS for IoT applications : the SEGWAY project
Filling the security gaps in cloud-edge integration.Read more >
CYSEC raises 4 million CHF in seed extension round
A funding to further its growth in digital assets and edge computing.Read more >
Protecting data: glossary of an industry
Every industry has its own vocabulary and cybersecurity is no exceptio...Read more >
Why cybersecurity is too important to get lost in space
As the race to space takes flight, ARCA is ready for launch. Read more >
2021 in review
Wrapping up yet another special year, but with great achievements.Read more >
Hack CYSAT: Europe’s first satellite hack
Calling for ethical hackers to hack a flying satellite.Read more >
Protecting health data on public cloud with HOSTEUR & CYSEC
Improving the cryptographic key exchange protocol to ensure end-to-end...Read more >
What is confidential computing?
The new kid on the security blockRead more >
CYSEC wins European Space Agency contract to protect governmental data
Improving the cryptographic key exchange protocol to ensure end-to-end...Read more >
Confidential computing with CYSEC ARCA & AMD-SEV [WHITEPAPER]
Whitepaper on how CYSEC ARCA leverage AMD-SEV Read more >
Differential power analysis on SIKE – part 2
Power analysis attack on SIKE in a semi-static setting Read more >
Differential power analysis on SIKE – part 1
An introduction to isogeny-based cryptography Read more >
CYSEC partners with D-Orbit
Fly end-to-end cybersecurity for commercial space missionsRead more >
CYSEC partners with armasuisse Cyber Defence Campus
Protecting the data broadcasted by satellite internet providers Read more >
Triton Malware Attack
Attack targeting Industrial Control System (ICS) Read more >
CYSEC introduces CYSEC LAB
A security evaluation lab Read more >
CYSEC SA introduces CYSEC ARCA Trusted OS
Secure Sensitive Data and Open the Door to CollaborationRead more >
Eureka program support granted for DiCoQuaNet project
A Distributed Computing over a Quantum-Secure NetworkRead more >
Happy Three-Year Anniversary to CYSEC!
Celebrating three amazing years Read more >
CYSEC joins the GAIA-X Space initiative
The next generation of Europe’s data infrastructureRead more >
Researchers and satellite start-ups meet
Discussing celestial cybersecurityRead more >
Il est trop facile de pirater un satellite et ça menace Internet
Cybersecurity in space and its importanceRead more >
La cybersécurité aussi dans lʹespace
Patrick Trinkler talking about the importance of cybersecurityRead more >
CYSAT’21 – kicking-off March 17TH
Cybersecurity for commercial spaceRead more >
Security for Commercial Space: CYSAT’21 Pioneers Cyber Security Solutions
CYSAT’21 Pioneers Cyber Security SolutionsRead more >
CYSEC – As Seen in BILANZ
CYSEC's journey to a secure operating systemRead more >
CYSEC listed in the CV VC Top 50 report
Listed for the second time in a rowRead more >
Cybersecurity for smallsats
Five security concepts for smallsat operators to followRead more >
The European Champions Alliance partners up with CYSEC & AP-Swiss
CYSAT'21: event dedicated to cyber risks in SpaceRead more >
Patrick Nicolet Joins Board of Directors
Former Capgemini CTO, a new strategic entry Read more >
CYSEC wins Swiss Space Office contract
For a secure in-orbit satellite reconfigurationRead more >
CYSEC and AP-Swiss organize CYSAT’21
The first European event on cybersecurity in spaceRead more >
Run Your Applications On Secure Enclaves
CYSEC partners with Kyos and joins a recognised networkRead more >
Let’s not make Newspace a paradise for hackers
Cyber threats in space and their consequencesRead more >
CYSEC selected for Tech4Trust acceleration program
Most innovative startups of the Lake Geneva regionRead more >
Pryv and CYSEC launch an integrated solution
The personal data & consent management secured middlewareRead more >
CYSEC at Forum EPFL
Startup day at SwissTech Convention CenterRead more >
CYSEC listed in the CV VC Top 50 report
Top 50 organizations in the Blockchain Technology sectorRead more >
SwissPKI Now Available On CYSEC ARCA
LibC Technologies and CYSEC launch a secured SwissPKI Read more >
CYSEC voted Best Security Startup
Ranking #62 in TOP100 Swiss Startup Award 2020Read more >
CYSEC partners up with Leaf Space
Offering end-to-end protection for satellitesRead more >
Confidential Edge Computing For IoT Security
Discover confidential edge computingRead more >
CYSEC SA raises 500’000 Swiss francs from FIT
CYSEC rewarded for its cybersecurity innovative solutionRead more >
CYSEC SA welcomes Howard Yu to its Advisory Board
Director of IMD’s Advanced Management Program Read more >
The Things Industries partners with CYSEC
For a secure on-premises LoRaWAN network deploymentRead more >
CYSEC wins European Space Agency contract
Protect ship tracking communications from cyber threatsRead more >
Next generation security platform
Safeguard critical applications and sensitive digital assetsRead more >
CYSEC joins the LoRa Alliance
Foster cybersecurity adoption in IoTRead more >
CYSEC SA welcomes Pascal Junod to its Advisory Board
Expert in applied cryptography and software protectionRead more >
Cloud Constellation Corporation partners with CYSEC
To deliver enterprise-ready Global Private Cloud ServicesRead more >
CYSEC partners with Build38
Facilitate secure deployment of Mobile App and Fraud ProtectionRead more >
CYSEC secures the smart heaters of Lancey Energy Storage
Protecting IoT ecosystems with CYSEC ARCARead more >
CYSEC to secure Astrocast global IoT network
End-to-end security of IoT Communication of 80 nanosatellitesRead more >
CYSEC wins CSO 2019 AWARD
Innovation in cybersecurity of the yearRead more >
Global Challenge Winner 2019
Winner of the ITU Innovations challengesRead more >
Insight SiP and CYSEC SA awarded Eurostars grant
Secure communications solution for medical IoT devicesRead more >
Singapore festival
Swiss fintechs to showcase innovative solutionsRead more >
CYSEC at Deftech, November 2019
Discussing the Swiss ecosystem for defense innovationRead more >
Come and meet us in October at Forum EPFL
Start Up DayRead more >
CYSEC selected by IMD in startup competition
IMD offers support to promising Swiss startups Read more >
New Solution For Secure Digital Asset Management
Swiss-made crypto asset management ecosystemRead more >
CYSEC selected to take part in ESA’s Business Incubation Programme
Program dedicated to startups innovating in spaceRead more >
REGDATA SA & CYSEC SA announce strategic alliance
Setting secure foundation and use of applicationsRead more >
Sysmosoft SA & CYSEC SA announce strategic alliance
Setting secure foundations of cryptographic technologiesRead more >
GEOSATIS and CYSEC announce technological partnership
For secure deployment and operation of IoT solution Read more >
CYSEC raises 1.5 million Swiss francs
To accelerate the deployment of innovative data security solutionsRead more >
CYSEC receives a FIT seed loan of CHF 100’000
To finalise product development and perform market validationRead more >
Swiss Fintech startups in NY
CYSEC selected to showcase ARCA in Venture Leaders roadshowRead more >