Cos'è il cloud Giacomo Lanzi

What is cloud storage? What advantages does it offer?

Cloud storage is a method of storing data that is placed in a place accessible through the network. This place is referred to by the term Cloud.

Once the data is transferred to the remote location, it becomes the responsibility of the Cloud Storage Service Provider. The main role of the provider is to ensure a functioning infrastructure and guarantee the owner access to data safely and at all times.

The need for external storage

Cloud storage is an inexpensive and scalable alternative to storing files on hard drives.

Normally, when users reach the storage limit of their hard drives, they have to transfer the files to an external drive. Although this is a more than acceptable solution for a private individual, when we talk about companies things get complicated.

Once the corporate storage limit is reached, a remote storage solution, or cloud storage, comes in handy.

Cloud storage services provide several business benefits. First of all, the elasticity of the storage limits that can be changed as needed. A further advantage lies in the delegation of maintenance. A company that requires an archiving service will not have to worry about installing and maintaining a local network or expanding it in anticipation of large quantities of documents to be stored.

But what is cloud actually? Let’s see how it works.

How the Cloud works

As mentioned, archiving service providers offer to store their customers’ data. Many are now using this type of technology, although few are still able to answer the simple question “what is the cloud?”. This is because the concept is often abstracted, for convenience, but once sent remotely, somewhere they have to be.

Most services store data on virtual machines hosted by physical servers. This explains in practice what the cloud is: a physical place where remote user data is stored. Each time the demand increases, new virtual machines are added to the existing ones.

When the customer of the service accesses his data, he does so through a browser or an app that connects to the provider’s servers. The server redirects the user to the correct location of the files.

As part of the service, providers typically store copies of data on different machines for redundancy. To avoid, in this way, the loss of data in the unfortunate event that a server is removed or its service interrupted.

what is the cloud

Advantages of cloud storage

What is the cloud we saw it a little while ago, it’s time to understand what the real advantages are and what they include:

   – Rapid implementation of the service: The service is activated in no time and requires no hardware intervention.
   – Remote management: The responsibility for maintenance and security lies on the provider’s shoulders. All activities related to data storage can be ignored by company staff.
   – Pay for what you use: The costs of the service are updated based on actual use. The savings are immediate and allow you to treat the cost as operational and not as capital to be invested.
   – Scalability: There are no size constraints on the stored data. In a local network, on the other hand, expanding the space has a considerable cost and requires operations on the entire infrastructure.
   – Security against data loss: Storing data on external servers eliminates possible economic damage if local data is no longer reachable.

What to pay attention to

There are also a few things to look out for when choosing a provider:

   – Security: Security issues are the most common. Providers try to protect their infrastructure with updated technologies and practices, but they do not always succeed. It is essential to trust a provider who cares about the security of their servers, especially when dealing with sensitive data.
   – Data administration: Being able to view, access and move data at will is a common concern with cloud resources. Delegating management to third parties offers its advantages, but may also limit control over data.
   – Communication latency: Accessing data depends on the network bandwidth available. It can happen, especially when using public networks, that traffic is limited. Within the company, this problem can be avoided by increasing the bandwidth capacity of the connection.

ownCloud

In choosing the cloud storage service for your needs, many factors must be taken into consideration. Between these:

   – Rates available
   – Space available for each tariff
   – Simplicity of implementation
   – Ease of management
   – Security and privacy
   – Continuity of the service
   – Functionality
Compared to other providers, ownCloud offers a wide range of very useful features.

Sharing between colleagues and people outside the company is simple and also allows you to set permissions for the individual user.

Security is guaranteed by an end-to-end encryption system and authentication with the OAuth2 protocol, but not only. A system of classification of documents is available which allows control over the distribution of the same.

All processes are tracked and it is possible to trace who accessed and what did the data.

ownCloud is a secure, complete and flexible system for professionals that also allows excellent collaboration between colleagues.

[btnsx id=”2931″]

Useful links:

ownCloud

ownCloud – simple and secure data storage

ownCloud free emergency Corona Virus (COVID19)

ownCloud free for our clients

 

Share


RSS

More Articles…

Categories …

Tags

RSS Dark Reading

RSS Full Disclosure

  • Backdoor.Win32.Delf.eg / Unauthenticated Remote Command Execution October 3, 2022
    Posted by malvuln on Oct 03Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/de6220a8e8fcbbee9763fb10e0ca23d7.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.Delf.eg Vulnerability: Unauthenticated Remote Command Execution Description: The malware listens on TCP port 7401. Third-party adversarys who can reach infected systems can issue commands made available by the...
  • Backdoor.Win32.NTRC / Weak Hardcoded Credentials October 3, 2022
    Posted by malvuln on Oct 03Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/273fd3f33279cc9c0378a49cf63d7a06.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.NTRC Vulnerability: Weak Hardcoded Credentials Family: NTRC Type: PE32 MD5: 273fd3f33279cc9c0378a49cf63d7a06 Vuln ID: MVID-2022-0646 Disclosure: 10/02/2022 Description: The malware listens on TCP port 6767....
  • Wordpress plugin - WPvivid Backup - CVE-2022-2863. October 3, 2022
    Posted by Rodolfo Tavares via Fulldisclosure on Oct 03=====[ Tempest Security Intelligence - ADV-15/2022 ]========================== Wordpress plugin - WPvivid Backup - Version < 0.9.76 Author: Rodolfo Tavares Tempest Security Intelligence - Recife, Pernambuco - Brazil =====[ Table of Contents]================================================== * Overview * Detailed description * Timeline of disclosure * Thanks & Acknowledgements * References =====[ […]
  • ZKBioSecurity 3.0.5- Privilege Escalation to Admin (CVE-2022-36634) October 1, 2022
    Posted by Caio B on Sep 30#######################ADVISORY INFORMATION####################### Product: ZKSecurity BIO Vendor: ZKTeco Version Affected: 3.0.5.0_R CVE: CVE-2022-36634 Vulnerability: User privilege escalation #######################CREDIT####################### This vulnerability was discovered and researched by Caio Burgardt and Silton Santos. #######################INTRODUCTION####################### Based on the hybrid biometric technology and...
  • ZKBiosecurity - Authenticated SQL Injection resulting in RCE (CVE-2022-36635) October 1, 2022
    Posted by Caio B on Sep 30#######################ADVISORY INFORMATION####################### Product: ZKSecurity BIO Vendor: ZKTeco ( https://www.zkteco.com/en/ZKBiosecurity/ZKBioSecurity_V5000_4.1.2) Version Affected: 4.1.2 CVE: CVE-2022-36635 Vulnerability: SQL Injection (with a plus: RCE) #######################CREDIT####################### This vulnerability was discovered and researched by Caio Burgardt and Silton Santos....
  • Backdoor.Win32.Augudor.b / Remote File Write Code Execution September 27, 2022
    Posted by malvuln on Sep 27Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/94ccd337cbdd4efbbcc0a6c888abb87d.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.Augudor.b Vulnerability: Remote File Write Code Execution Description: The malware drops an empty file named "zy.exe" and listens on TCP port 810. Third-party adversaries who can reach the infected […]
  • Backdoor.Win32.Psychward.b / Weak Hardcoded Credentials September 27, 2022
    Posted by malvuln on Sep 27Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/0b8cf90ab9820cb3fcb7f1d1b45e4e57.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.Psychward.b Vulnerability: Weak Hardcoded Credentials Description: The malware listens on TCP port 8888 and requires authentication. However, the password "4174" is weak and hardcoded in cleartext within the PE...
  • Backdoor.Win32.Bingle.b / Weak Hardcoded Credentials September 27, 2022
    Posted by malvuln on Sep 27Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/eacaa12336f50f1c395663fba92a4d32.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.Bingle.b Vulnerability: Weak Hardcoded Credentials Description: The malware is packed using ASPack 2.11, listens on TCP port 22 and requires authentication. However, the password "let me in" is weak […]
  • SEC Consult SA-20220923-0 :: Multiple Memory Corruption Vulnerabilities in COVESA (Connected Vehicle Systems Alliance) DLT daemon September 27, 2022
    Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Sep 27SEC Consult Vulnerability Lab Security Advisory < 20220923-0 > ======================================================================= title: Multiple Memory Corruption Vulnerabilities product: COVESA DLT daemon (Diagnostic Log and Trace) Connected Vehicle Systems Alliance (COVESA), formerly GENIVI vulnerable version:
  • Backdoor.Win32.Hellza.120 / Authentication Bypass September 20, 2022
    Posted by malvuln on Sep 19Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/2cbd0fcf4d5fd5fb6c8014390efb0b21_B.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.Hellza.120 Vulnerability: Authentication Bypass Description: The malware listens on TCP ports 12122, 21. Third-party adversarys who can reach infected systems can logon using any username/password combination....

Customers

Newsletter