A B2B customer wants to know if I can deploy our web application on their internal server infrastructure instead of using a public cloud. They're particularly concerned about privacy and want to ensure that no sensitive data or code is exposed. They expect the highest security measures possible. What are my options? Should I go ahead with hosting on their internal server, or is there a better alternative?
5 Answers
If you own the code, definitely avoid on-prem unless your client is a large, reputable business. Smaller or offshore companies might exploit your code and stop payments. A good compromise could be to let them manage their database while keeping the backend hosted on your server.
Managed Private Cloud often meets the highest security standards while keeping the app easier to maintain. While on-prem is doable, it could make your support model more complicated and financially draining during outages.
I usually recommend a Managed Private Cloud before agreeing to on-prem solutions. With a dedicated VPC/server that’s physically isolated from others, you can manage it while still addressing their security needs. This way, you maintain control over logs and updates, which is crucial because debugging on a server you can't access can be a nightmare.
It’s quite common in B2B settings to offer custom pricing for on-prem installations. Just remember, maintaining and upgrading these setups is typically way tougher, so plan accordingly.
Absolutely, consider hosting the database on their server with your application on your server while implementing end-to-end encryption. This retains a level of security while allowing for operational efficiency. It's often referred to as hybrid hosting in industry terms.
Related Questions
How to Build a Custom GPT Journalist That Posts Directly to WordPress
Cloudflare Origin SSL Certificate Setup Guide
How To Effectively Monetize A Site With Ads