Member Article

Cloud myths

Aad Dekkers, EMEA director of marketing at EVault, a provider of backup and disaster reocvery solutions, looks at the myths of cloud computing.

While cloud computing has ingrained itself in our lives, both business and personal, an aura of mystery continues to surround it. Perhaps this is because few people really understand the technology - unsurprising given that there is no technical definition. At its most basic, cloud computing is the delivery of services over the internet. These services range from email (Gmail etc.) and applications to data backup, storage and disaster recovery.

The benefits of backing up data and restoring it over a wide area network connection (the internet) include speed, reliability and flexibility, yet a lack of understanding is preventing some businesses from making the switch to a cloud solution. Here we look to debunk five of the most common myths:

Myth 1: Data in the cloud is not secure

When you purchase a cloud backup and disaster recovery solution from a managed service provider (MSP) you sign a service level agreement (SLA) which defines the services that it will provide to you. It will also confirm what security measures will be taken. The most secure services will include AES-256 (Advanced Encryption Standard) data encryption and a confirmation that data will remain safely encrypted while in the data centre. Similarly, in the event of a restore, the backup data should remain encrypted until the member of staff at your business who is responsible for your unique encryption key, enters a pass code. No-one, not even your provider, will be able to decrypt your data at any point.

If managed properly using the security measures described here then the cloud is a very secure way to backup your data. It’s worth checking out the testimonials and track record of your MSP but remember, MSPs stake their reputation on the security of your data, so they will do their best to ensure it remains safe.

Myth 2: The cloud is not reliable

The cloud is more reliable than using tape to backup data. The data can’t be lost in transit to the data centre and as long as you have an internet connection you can quickly retrieve files regardless of your location.

Using cloud backup and disaster recovery means you can recover individual files instantly, and whole applications can be accessed within as little as four hours on virtual, cloud-based servers. Within your SLA you can set Recovery Time Objectives (speed of recovery) and Recovery Point Objectives (files that must be recovered).

Myth 3: The cloud is expensive

The belief that the cloud is expensive arises from the ongoing operational expenditure (OpEx) associated with a managed service. What the myth doesn’t take into account is that the cloud requires no capital expenditure (CapEx). There’s no need to purchase and install hardware, software or consumables such as tapes. Plus, businesses relying on tape or pure disk storage have to contend with potential unexpected costs when hardware breaks down and still need to actively maintain their solutions – those using the cloud have all costs clearly laid out in a regular subscription. They can choose to increase or decrease costs depending on their use of the service, but there are no hidden costs.

Myth 4: If my supplier goes bust I lose my data

You won’t lose your data. Your service provider will be able to say what will happen in the unlikely event of it going out of business and will include clauses in the SLA for return of data on default.

Extra protection against this eventuality comes from using a hybrid solution (where a copy of your most critical data is also stored on-site) that will allow for onsite recovery.

However for peace of mind you can easily run a credit report on potential providers before making a commitment. Look at how the long the MSP or the solution it uses has been in the market for – a stable and reliable track record speaks volumes.

Myth 5: You can’t achieve regulatory compliance in cloud environments

If you work in an industry that requires data compliance – e.g. healthcare or retail - then you need to confirm that your backup solution meets industry requirements. Meeting compliance can be tough – there is no denying that – but the standards bodies are increasingly recognising the importance of cloud and are trying to help. The PCI Security Standards Council, for example, recently laid out guidelines for PCI DSS compliance in the cloud.

If your provider tells you they can meet compliance standards, make sure this is written into the SLA. It is your responsibility to ensure the provider maintains regulatory controls.

These are five of the most common myths surrounding the use of the cloud for backing up data and the truths outlined should allay any concerns. However, if the MSP isn’t able to reassure you with all the correct documentation, service records and SLAs then take your business elsewhere – contacting a manufacturer that supplies MSPs with backup technology directly, allows them to put you in touch with one of their reputable partners. Sometimes this is the best option as you have it on authority that they’re the best technology partner for your business from the producers of the technology itself!

This was posted in Bdaily's Members' News section by EVault .