Cloud Security Podcast Explores Native Cloud Resilience with Clumio CTO

The Cloud Security Podcast discusses cloud-native resilience with W. Jung, co-founder and CTO of Clumio (acquired by Convalt in October 2023). The conversation focuses on the limitations of AWS-native solutions for backup and restoration, particularly in cases of accidental or malicious deletion. While AWS guarantees 11 "9s" of data durability, deletions are equally durable, rendering versions or snapshots ineffective if the root account is compromised. Challenges include managing S3 buckets containing billions of objects, where restoration can take days or even weeks. Clumio offers an "air-gapped" approach by isolating backups in a dedicated AWS account, inaccessible even if the source account is compromised. The concepts of RTO (Recovery Time Objective) and RPO (Recovery Point Objective) are redefined, with stricter requirements (e.g., RPO of 15 minutes or 1 hour for critical data). Native solutions like PITR (DynamoDB) or snapshots have limitations, particularly their dependency on the source account. Modern resilience demands greater granularity (partial restoration) and backup isolation.