Brian Jackson - Fotolia

Evaluate Weigh the pros and cons of technologies, products and projects you are considering.

What are the security pros and cons of hybrid cloud storage?

Interest in hybrid cloud data storage is growing, but is it safe? Expert Dan Sullivan outlines the risks and rewards for enterprises.

I've seen some predictions that more enterprises will implement hybrid cloud data storage paradigms where data is stored in an enterprise's data center while used in tandem with public cloud software as a service (SaaS) applications. What are the security benefits of this model, and do they outweigh cloud storage security issues such as potential cost, performance and management drawbacks?

Hybrid cloud storage strategies leverage the cost and scalability of cloud storage for some data while allowing enterprises to maintain more control over their most sensitive data.

The general approach is to use a cloud provider to store public or less sensitive data, while keeping private and confidential data on-premises. This approach is coupled with SaaS services, such as analytics or marketing services, which can access data from a cloud provider using the provider's data access API.

To avoid hybrid cloud storage security issues, IT managers will need to establish appropriate authorization controls with regards to reading and writing data in cloud storage systems. There are more challenges with regards to accessing on-premises data from a SaaS. The organization and its SaaS provider may need to create data transfer methods from on-premises storage to the SaaS. It will also need to determine network policies and access controls that will apply to the SaaS vendor.

Some enterprises may be more comfortable creating data sets specifically designed for the SaaS provider, and even generating those on a regular basis, (e.g., nightly). Data sets can then be transferred using secure file transfer methods rather than providing users with direct access to enterprise database and applications. It is important to note that there are performance and latency trade-offs with file transfers versus direct API access to data. As a matter of fact, direct access from APIs may be slower depending on network and application latency. By batch-uploading data to a SaaS, you eliminate SaaS-to-on-premises latency, but you do introduce a time lag between the time at which data was generated and the time it is available in the SaaS.

While implementing hybrid cloud storage holds many promises, consider the potential hurdles that can derail your plans, including cost, performance and timeliness that can derail your plans. Enterprises must carefully consider these hurdles before jumping in feet first.

Ask the Expert!
SearchCloudSecurity expert Dan Sullivan is ready to answer your application security questions -- submit them now! (All questions are anonymous.)

Next Steps

Check out SearchCloudStorage's guide to hybrid cloud technology.

Dig Deeper on Hybrid and Private Cloud Computing Security

Join the conversation


Send me notifications when other members comment.

Please create a username to comment.

Is hybrid cloud storage in your enterprise's current or future plans?
Personally I do not see that much difference than if your data is on the cloud or within your own company. They all have the same possible risks.
Hybrid cloud is less susceptible to social engineering, IMO. It's not a perfect solution, and as Todd says below, it does have many of the same risks, but if someone's determined to get to the data, they will. Having it offsite puts up a few additional barriers, at least to those who want to cause harm from within.
Todd is right on target. Cloud is cloud is cloud. When moving from public to private to a hybrid mix, your data is still traveling among the same nodes, through the same people and systems and is subject to the same dangers. Keep your stuff safe from the outset, don't be dumb about your passwords and systems security, and you should be OK. That's the best you can hope for these days.