News

Inside Google's Datacenter: How Google Keeps Its Cloud Secure

Google gave a rare glimpse into how it secures one of the datacenters in its global network on Friday.

The company described its security measures in a blog post, as well as in a YouTube video that shows the inside of a Google datacenter -- a rarity for the company, which does not allow public tours of its campuses.

The upshot: If you're thinking of breaking into Google's datacenters to steal information, think again.

The physical security measures shown in Google's video include restricted access via fencing and checkpoints, badges that are difficult to forge, and even iris scans. In addition to humans scanning the perimeter using cameras located across the datacenter's grounds, there are also automated systems to help weed out the unwanted. Google uses other security methods that it did not disclose.

Would-be thieves can also forget about dumpster-diving to snag data, something that Paul Allen and Bill Gates used to do to DEC's trash in their early Micro-Soft days. Data stored on hard drives in Google's datacenter get wiped, then the hard drive is physically crushed before disposal. Google also uses a drive shredder that spits out chunks of mashed-up hard drives, which then are sent out as scrap for recycling.

Keeping the Cloud Green
Since Friday was Earth Day, there was discussion of power-saving issues associated with running datacenters. Google claims in the video that in 2009 it achieved the most stringent standards for datacenter power efficiency that were set by the U.S. Environmental Protection Agency. Google taps wind energy to power its datacenter in Oklahoma and has invested $350 million in other renewable energy projects, according to this Google blog.

Not to be outdone on Earth Day, Microsoft also continued its messaging that cloud computing use will actually save the planet's use of energy resources. A Microsoft blog floats the statistic that IT constitutes 2 percent of energy use worldwide. Cloud computing can help reduce the other 98 percent of energy use, Microsoft's blog contends. The blog does admit that cloud computing "comes with a serious energy and carbon cost," but it suggests that running applications through the cloud will save overall power consumption in the long run.

The environmental organization Greenpeace contends that most cloud computing companies, such as Google and Microsoft, simply use dirty energy derived from coal and nuclear sources. Greenpeace recently published a report titled "How Dirty Is Your Data" (PDF) that called on datacenter companies to be more transparent about their energy use and carbon footprints. The report gives Google an "F" and Microsoft a "C" on transparency.

Matt Rosoff at the Business Insider has noted that Facebook rolled out a new energy-efficient datacenter, but Facebook has been far more open than Google about the details. Facebook went open with its practices by establishing an Open Compute Project.

Cloud Security and the Feds
Certainly, Google and Microsoft aren't the only two cloud service providers on the planet, but they have been in the spotlight lately as they battle to win contracts at the federal level. Those battles -- which could open up massive customer-scale scenarios limited only by the size of government itself -- also involve security concerns. However, the security is wrapped around the Federal Information Security Management Act (FISMA). FISMA is a kind of blueprint indicating what government agencies should do to ensure security on their systems.

After a public spat over FISMA certification and accreditation approvals, both Google and Microsoft are now entering a phase in which they will start providing cloud-based services to U.S. government agencies on a broad scale. Microsoft's datacenters, and now some of its cloud-based apps, have already received authorization to operate based on FISMA criteria.

Meanwhile, Google's cloud-based apps, called "Google Apps for Government," are getting reviewed for additional security controls. However, the government has basically indicated that they pass the FISMA test.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Featured

  • Microsoft Appoints Althoff as New CEO for Commercial Business

    Microsoft CEO and chairman Satya Nadella on Wednesday announced the promotion of Judson Althoff to CEO of the company's commercial business, presenting the move as a response to the dramatic industrywide shifts caused by AI.

  • Broadcom Revamps VMware Partner Program Again

    Broadcom recently announced a significant update regarding its VMware Cloud Service Provider (VCSP) program, coinciding with the release of VMware Cloud Foundation (VCF) 9.0, a key component in Broadcom’s private cloud strategy.

  • Closeup of the new Copilot keyboard key

    Microsoft Updates Copilot To Add Context-Sensitive Agents to Teams, SharePoint

    Microsoft has rolled out a new public preview for collaborative "always on" agents in Microsoft 365 Copilot, bringing enhanced, context-aware tools into Teams channels, meetings, SharePoint sites, Planner workstreams and Viva Engage communities.

  • Windows 365 Cloud Apps Now Available for Public Preview

    Microsoft announced this week that Windows 365 Cloud Apps are now available for public preview. This aims to allow IT administrators to stream individual Windows applications from the cloud, removing the need to assign Cloud PCs to every user.