LAS VEGAS---Amazon Web Services has been growing its ecosystem at a rapid clip, but one common theme at the company's re:Invent 2014 powwow has been security vendors adding an extra layer of protection to everything from Web apps to virtual infrastructure.
On Tuesday, a bevy of security vendors unveiled expanded offerings on the AWS Marketplace. A quick recap:
- Sophos added a secure server option for AWS in addition to its existing next-gen firewalls. The Sophos Secure OS combines CentOS with anti-malware on one Amazon Machine Instance (AMI). The service is aimed at AWS customers who don't want to build their own security infrastructure to manage their cloud services.
- Datapipe, which manages hybrid cloud infrastructure, launched a new model that allows enterprises to secure AWS without handing over admin credentials. The Datapipe Access Control Model for AWS tracks all users and adds another level of role access and tracking.
- Imperva launched a cloud reference architecture focused on AWS along with a series of templates to add extra security layers to the cloud. The architecture includes distributed denial of service attack protection, firewalls and additional services.
- HyTrust updated its DataControl encryption so it is now natively built into AWS. The upshot is customers can manage their own encryption keys on AWS. The target market is regulated industries.
And that short list is most likely just a sampling. For years, one of the biggest arguments against the public cloud was that security wasn't guaranteed. The AWS argument, which was echoed by both Google and Microsoft Azure, was that those mega cloud vendors are likely to have more security resources than you do. That argument has held up over time, but the breadth of new and existing security products for AWS illustrate how enterprises want extra layers in the cloud. It remains to be seen if enterprises are essentially wearing two condoms.