A new report warns of a “dubious” permissions gap in enterprise hybrid and multi-cloud environments.
The CloudKnox Security study, described as the first in the industry, surveyed more than 150 global organizations about their use of Amazon Web Services (AWS), Microsoft Azure, Google Cloudand VMware vSphere.
Overall, more than 90% of the organizations used less than 5% of the granted permissions. Every single provider told a dark story. At AWS, more than 95% of identities used less than 2% of the granted permissions. Azure saw 90% for less than 2%; while Google was 90% for less than 5%.
This is defined by CloudKnox as a “cloud authorization gap”. This publication examined various skill and security gaps that companies wanted to close. In many cases, this is due to misunderstandings about shared responsibility and the fact that cloud providers only …