BYOS – in the cloud, security is a shared responsibility

Print Friendly, PDF & Email

While 72% of the companies we recently surveyed understood the “shared responsibility” model, that meant more than a quarter of them did not.  As the public cloud providers quickly gained momentum, it also became obvious that they could only provide security for their own infrastructure.  This is the shared responsibility model:  the cloud provider maintains the security of the cloud infrastructure while the customer is responsible for the security of what they’re running in that public cloud.

For example, there is no way for a cloud provider to know that a workload is experiencing data leakage – they aren’t controlling that application.  Similarly, a zero-day attack targeted at an application may have no outward indication that it is malicious.  So companies must bring their own security.

BYOS – in a cloud scenario, do you understand the shared responsibility model that requires you to “bring your own security?” Many companies didn’t.Click To Tweet

How do they do that?

It’s simpler than it sounds:  companies merely need to deploy cloud-based firewalls to protect network and application traffic that is running specifically for them in the cloud.  A web application will typically require a web application firewall, a data center that was shifted to the cloud would rely on a network firewall.  Barracuda offers two such products – the Barracuda Web Application Firewall and the Barracuda NextGen Firewall F-Series.  Both are designed for in-cloud deployment whether you’re deploying in Azure, AWS, or vCloud-Air.  Learn more at, and register for a webinar to learn other statistics from our recent survey.

Scroll to top