Software, including operating systems, increases your level of assurance in the environment and can mitigate – if not remediate – most of the exposure from the personnel and physical environment your cloud is operated within.
On top of trustworthy (or sometimes untrustworthy) hardware, a multi-tenancy cloud center should use trusted operating systems like SE-Linux or Solaris 11 with trusted features to mitigate and isolate the information from unintended blending or internal exfiltration between competing organizations and trusted internal administrators (who may likely, as was the case in Wiki Leaks, be the largest threat). The government, academia, and software vendors spent far more money than you would ever want to know building, testing, and certifying trusted operating systems only to see them marginalized in utilization because of perceived issues of complexity and limited trained staffs to properly implement and configure them.
Why a trusted Operating System?
Your operating systems have access to every bit that is executed on or against them and in their memory space. [Read more...]