views:

8

answers:

0

Hi,

This is another Cloud security question, but it relates to the specific types of vulnerabilities that are exposed via a cloud infrastructure.

My question is: Assume Company A and Company B have separate virtual servers within the same Cloud-provider's infrastructure (assume they have 2 servers each). Because these four virtual servers are essentially part of the same network, can Company A directly send network packets to Company B?

I am currently under the impression that Virtual LANs can be set-up to prevent direct access from other virtual machines - Is this correct? I suppose the security risk then comes from the fact that Virtual LANs are management by software and therefore you must have faith that the Cloud-supplier's VLAN software cannot be compromised?

If a VLAN is setup within the Cloud environment for company A - Where do the security risks arise for this kind of configuration? I was told that if I hosted a machine within the Cloud then I would have to change the password on the machine every few days and make sure all the apps I was running were super-tight security wise because of the unchecked nature of Cloud traffic. Surely this is mitigated by running a VLAN?

Many Thanks,

Paul

P.S - The data I am thinking of hosting within the cloud is not sensitive (not financial, medical, or personal...)