Is Azure more secure/trusted than AWS?

Microsoft Azure Application Development

This is a type of subjective question and probably the answer to this is NO. AWS explicitly adheres to a shared security model, Azure will be the same; that is, they control the security of the cloud and you are overall responsible for the security in the cloud. Microsoft Azure Application Development Services provide immense security service to prevent Azure from any attacks on its security system.

Azure Security

1.  They secure all the servers, hypervisors, physical access etc., and have all sorts of independently audited accreditations confirming they do the right thing in this respect. You my say that one of them has one badge and the other does not. This would be nit picking except in some of the most sensitive and specific use cases. You must control the operating system, application, patching and end to end security (SSL etc.). During the process all time, you could still choose to subject yourself to audit on your security, be it PEN testing or any other.

2.   Be it Azure or AWS, at the end of the day you are spinning up a VM, Operating system and software. The security on that content is your responsibility, so as if you don’t patch then you may be exploited. This is equally likely under either AWS or Azure. If the underlying provider don’t do the right work they’d lose all their trust and their business, so the answer to this question is a certain “NO”- ‘ Azure is not more trusted / secure than AWS’.

3.   If you are dealing with PaaS (such as hosted SQL, hosted RDS etc.) there be some of the minor delta as you are relying on the provider to “do the right thing” in terms of patching their platform service to ensure security for you as an end user, but it appears inconceivable that they would not do this in a timely way.

4.   The cloud service provider i.e. AWS ensures protection against Network-Layer attacks including IPS (Intrusion prevention system) and anomaly detection solutions. You can trust on the cloud provider’s network components to be well configured and hardened. The cloud service provider does not protect from Application- Layer attacks and has no control over the Application the user is deploying / hosting.

5.   A Shared Responsibility model exists, in which you are responsible for protecting the Application Layer. As a cloud service provider, AWS has no insights into the applications. Therefore, a large number of requests to the application is a legitimate activity to it.

On both platforms the security is mainly your responsibility since you will be selecting, deploying and hardening the operating system inside a virtual machine. For the actual infrastructure, they haven’t had major security problems and have highly protected physical locations, so in that case Azure may be considered more trusted. For any other relevant queries, you can contact our developer team.

Share: