Microsoft Azure is a good platform. It's experiencing rapid growth, to the point that it now holds the second largest market share of cloud infrastructure services, pulling ahead of IBM, Salesforce, and Google. Microsoft attributes Azure's growth on several things, including the security features of the product. A May 2012 study by Intel (pdf) reported that 87% of IT professionals were very or moderately concerned about cloud security. The growth in public cloud adoption shows that those numbers may have improved in the last 24 months, or the benefits of adopting the public cloud outweigh the privacy concerns. Either way, Microsoft wants to make sure that customers have confidence that their apps, data, and workloads will be secure in the Azure cloud.
Microsoft Azure has several built in security features, and Microsoft has just announced that they are adding a few more. Microsoft Azure native network security currently protects the infrastructure, cloud fabric, hypervisors, workloads/services, and tenant environments. Unfortunately, Microsoft Azure cannot differentiate between a customer's normal operations and a malicious attack, which means that the IT Administrator is responsible to secure the following gaps:
- Application-layer intelligence
- Deep content inspection/filtering
- Web filtering
- DDoS protection
- Identity awareness
- Encrypted traffic
- Application control
- Network management
The Barracuda Web Application Firewall Vx (WAF) and the Barracuda NG Firewall Vx are designed to protect your resources where Microsoft Azure cannot. The Barracuda WAF resides between the Internet and your server, protecting web applications from data breaches and defacement. Key features include automatic security updates, simple identity and access management, and easy administration and reporting. The WAF is engineered to deliver maximum application uptime and performance. For more details on the features and to request a fully-functional 30-day trial unit, visit this page.
The Barracuda NG Firewall Vx creates a network security gateway to protect your virtual machines, and it operates just like a physical device. It can intercept and apply policies to all Layer 2 through 7 traffic. It also includes high availability and VPN technologies, and can protect private, public, and hybrid cloud environments. The Barracuda WAF and the Barracuda NG Firewall provide the type of security Microsoft Azure cannot.
Barracuda was among the first to offer comprehensive protection for web applications and associated confidential data hosted in the Microsoft Azure cloud. We made the Barracuda WAF available in May of 2013 and the NG Firewall followed in October. The latest release of the Barracuda NG Firewall enhances support for Hyper-V and Azure. Details are here.
You can download these whitepapers for more details on Microsoft Azure and Barracuda security solutions.
If you would like more information about our security solutions for Microsoft Azure, visit our Microsoft Azure program page here. If you're at TechEd North America 2014, you can find us in booth #1647.