I have been talking about how PaaS is the future of Cloud Services and as more and more users join the PaaS bandwagon, it is important to talk about PaaS security. Recently, Edward Haletky invited me and James Urquhart of CNET to join a roundtable on PaaS security. Some of the key highlights from the discussion are
- Developers should understand their security needs and figure out whether the cloud provider meets their needs
- There is a clear need to educate the users on the fact that they are also equally responsible for security
- Service providers should be more transparent by giving programatic access to the security practices inside their cloud
If you want to hear the full discussion, you can listen using the link here. Feel free to share your thoughts on the topic.