Gartner：2011年的云安全HypeCycle

如下图所示：

 

 

很显然，大量的技术都集中在初始阶段。其中有一个比较有趣的是云安全网关。

Gartner介绍到，Cloud security gateways are on-premises or cloud-based security policy enforcement points placed between cloud service consumers and cloud service providers to interject enterprise security policies as the cloud-based resources are accessed. Cloud security gateways consolidate multiple types of security policy enforcement. Example security policies include authentication, single sign-on, authorization, security token mapping, encryption, tokenization, logging, alerting, API control and so on.

Multiple forms of security that already exist in the form of proxies, sitting outside of the cloud, either in the enterprise or in some other provider's cloud. Cloud security gateways, security appliances for cloud application control, and cloud services brokerages, are early examples of how control mechanisms can be stacked through a chain of cloud-based providers. For enterprise customers to ensure that incoming requests from their users are "filtered" through the proxy service, the cloud application service must provide some reliable enforcement mechanism.